This site uses cookies. To find out more, see our Cookies Policy

Application and Data Security Manager in Kuala Lumpur at Great Eastern

Date Posted: 8/11/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Kuala Lumpur
  • Date Posted:
    8/11/2018
  • Job ID:
    750/524/1972

Job Description

Job ID: 000750

The Role: 

  1. Implement the Application Security Design review process for IT systems implementation or enhancement in Malaysia entities.
  2. Conduct application security review for new system implementation and major enhancements.
  3. Review the security testing framework and conduct evaluation for the selection of the security testing vendors.
  4. Evaluate new application and data security technology.
  5. Coordinate the following security testing for existing systems as per guidelines:
    • Web and mobile application penetration testing
    • Internal and external network vulnerability assessment
    • Wireless penetration testing
    • Secure code review
  6. Provide oversight on web and mobile application Penetration Test and Secure Code review for new system rollout and systems that undergo major enhancements.
  7. Review the security findings raised by security testers. Ensure the risk ratings are appropriately assigned and mitigating controls are in place to minimize the risk the organization is exposed to.
  8. Review the security risks, mitigating controls and action plans in IT Risk Acceptance requests
  9. Monitor the DLP Strategy implementation under Group IT, including exception requests

Job Requirements

The Person: 

  • Diploma/Degree or related in information technology.
  • Information security certifications, such as CEH, CISSP or CISA or equivalent.
  • Minimum 5 to 7 years’ experience in IT Security.
  • Familiar with application security development methodology such as OWASP and BSIMM.
  • Familiar with Data loss prevention (DLP) processes and technology
  • Good communication, presentation and writing skills.
  • Able to manage key stakeholders and outsourced vendors.
  • Experienced in software development and project management methodology.
  • Ability to work well as a team player.