Enable job alerts via email!
Analyst/Senior Analyst - Group IT Cybersecurity & Risk Management
QL Corporate Services Sdn Bhd
Selangor
On-site
MYR 60,000 - 90,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading corporate services company in Malaysia seeks a Cybersecurity Analyst to support risk initiatives, ensure compliance, and strengthen cyber resilience. Responsibilities include identifying technology risks, documenting control deficiencies, and assisting Incident Response teams. The ideal candidate holds a relevant degree and has experience with GRC tools and understanding of cybersecurity frameworks. This role offers the opportunity to enhance organizational cyber defense capabilities.
Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Risk Management or specialized certifications preferred.
- Knowledge of security frameworks (e.g., COBIT, ISF, COSO) and standards (e.g., ISO, NIST).
- Progressive working experience with a strong understanding of risk management processes.
Responsibilities
- Identify, document, and track technology risks across IT systems.
- Assist in maintaining the IT Risk Register and ensure remediation plans.
- Support Incident Response teams and analyze incidents.
Skills
Education
Tools
We’re seeking a Cybersecurity Analyst to support IT and cybersecurity risk initiatives, ensure compliance with relevant frameworks, and strengthen cyber resilience through risk assessments and business continuity planning.
Identify, document, and track technology risks, vulnerabilities, and control deficiencies across IT systems and business units.
Assist in maintaining the IT Risk Register and ensuring appropriate remediation and risk treatment plans are implemented.
Monitor key risk indicators (KRIs) and metrics to support continuous risk visibility and reporting to management.
Assist Incident Response teams to analyze incidents and integrate lessons learned into risk mitigation strategies.
Support vulnerability management efforts by correlating threat data, patch status, and asset criticality.
Contribute to operational reviews of cybersecurity events, ensuring appropriate escalation and reporting.
Support security control validation for cloud, endpoint, network, and identity management systems.
Maintain documentation to support internal and external audit requests.
Assist in developing, updating, and enforcing security policies, procedures, and standards.
Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Risk Management or specialized certifications preferred.
Knowledge of security frameworks (e.g., COBIT, ISF, COSO) and standards (e.g., ISO, NIST), information security principles, security architecture and regulatory requirements will have added advantage.
Progressive working experience with strong understanding of risk management processes, cybersecurity frameworks and operational control testing.
Hands-on experience with GRC tools (e.g., Archer, Managed Engine, ServiceNow GRC, OneTrust, MetricStream or LogicGate).
Exposure to enterprise environments (cloud, hybrid, or on-premises) and regulatory compliance frameworks.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
