Internship Cybersecurity - Network Security 工作, 薪水 up to MYR 500, THE D GROUP Selangor 公司招聘中 - Ricebowl

• Currently pursuing a Diploma/Degree in Cybersecurity, Computer Science, IT/Networking or related.
• Basics in networks, operating systems, and identity access concepts.
• Familiar with any of: Wireshark, Nmap, Burp Suite, OpenVAS/Nessus, Wazuh/Splunk, Microsoft Defender, CrowdStrike/EDR (nice to have).
• Awareness of OWASP Top 10, CIS Controls, NIST CSF, ISO/IEC 27001/27002, PDPA (training will be provided).
• Comfortable with documentation and simple scripting (PowerShell/Bash/Python is a plus).
• Clear communicator, detail-oriented, curious, and ethical.

You’ll help our DPO/InfoSec team strengthen TDG’s security posture across cloud, endpoints, data, and processes—supporting ISO 27001 controls and PDPA compliance while learning real-world incident response, risk assessment, and secure operations.

1. Assist with endpoint and M365/Google Workspace security checks, patch status, and baseline hardening (CIS-aligned).
2. Run basic network and asset discovery; maintain the IT & Data Asset Register.
3. Perform guided scans (e.g., OpenVAS/Nessus/Wazuh) on approved assets, triage findings, and document remediation plans.
4. Contribute to the Risk Register (likelihood × impact) and track mitigations.
5. Draft/update SOPs, policies, and evidence logs for ISO 27001 Annex A controls and PDPA obligations (consent, retention, access).
6. Help with security awareness content (phishing drills, micro-training).
7. Support triage, timeline building, and post-incident RCA & CAPA documentation for minor incidents.
8. Assist vendor/security due diligence checklists, access reviews, and join change-management walk-throughs.
9. Keep clean records: control evidence, change logs, exception registers, and audit-ready folders.