Plus
Включить Plus
Назад
Company hidden
6 дней назад

Security Analyst (Cybersecurity)

Формат работы
hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
Malaysia
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Security Analyst (Cybersecurity): Supporting security governance, risk assessments, and compliance monitoring for a global data and technology platform with an accent on ISO 27001, SOC 2, and NIST frameworks. Focus on monitoring control effectiveness, tracking remediation of non-conformities, and supporting internal and external security audits.

Location: Hybrid in Cyberjaya (WFO 2 days a week)

Company

A global data and technology company powering opportunities for people and businesses across various markets including financial services, healthcare, and automotive.

What you will do

  • Support security governance, assurance activities, and risk assessments for projects, platforms, and services.
  • Assist with internal and external audits (ISO 27001, SOC 2, PCI DSS), including evidence collection and remediation tracking.
  • Monitor security metrics and dashboards to identify non-compliance and control deviations against defined standards and SLAs.
  • Log and track security non-conformities and collaborate with application owners to implement remediation actions.
  • Prepare security reports and metrics summaries while collaborating with Risk Management and Technology teams.

Requirements

  • 2-4 years of experience in information security, IT risk, compliance, or audit roles.
  • Understanding of security and risk frameworks such as ISO 27001, SOC 2, or NIST.
  • Familiarity with security metrics, control monitoring, and compliance reporting.
  • Ability to analyze information and document findings effectively.
  • Awareness of cloud, SaaS, or enterprise platforms.

Nice to have

  • Experience in regulated or data-driven environments.
  • Hands-on experience with security monitoring tools such as Panaseer, Checkmarx, or Wiz.io.
  • Relevant certifications such as ISO 27001 Lead Implementor/Auditor, CCSK, CySA+, Security+, CISA, CRISC, or CISSP.

Culture & Benefits

  • Inclusive, people-first, and purpose-driven culture recognized as one of the World's Best Workplaces 2025.
  • Strong focus on DEI, authenticity, engagement, and work-life balance.
  • Best-in-class family well-being and enhanced medical benefits.
  • Comprehensive paid time off and professional development opportunities.
  • Commitment to wellness, reward and recognition, and volunteering.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →