Enable job alerts via email!
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
A leading company in Malaysia is seeking a Cyber Security Operations Lead to oversee risk and control initiatives within their cybersecurity division. The role requires expertise in cyber defense, risk management, and excellent communication skills to promote best practices and ensure effective governance. Responsibilities include managing personnel, guiding a team of experts, and conducting risk reviews while providing timely insights to governance bodies.
About the Role
This role involves leading risk and control initiatives across designated areas within the Cyber Security Operations (CyOPS) division, which includes functions such as threat monitoring, cyber defense, endpoint protection, data loss prevention, insider threat management, and fusion operations. The team is responsible for providing oversight, governance, and independent assurance, while also promoting best practices and lessons learned to influence the design and execution of cyber controls. A key aspect of this role is evaluating the effectiveness of these controls and ensuring timely and high-quality delivery of all risk-related activities, such as identifying risks, managing remediation progress, and preparing risk reports. The position demands strong communication and stakeholder engagement abilities, a high level of accountability, and the capacity to lead through challenges.
Key responsibilities include:
1. Manage all risk and control responsibilities tied to personnel, operations, and assets within the cybersecurity function.
2. Guide a team of subject matter experts to advance strategic improvements in control frameworks.
3. Conduct in-depth, risk-centric reviews that are timely and reproducible.
4. Develop and sustain internal mechanisms that allow ongoing oversight of risk and controls, including the upkeep of control documentation and related performance indicators.
5. Present accurate and timely risk insights and metrics to relevant governance bodies.
6. Ensure alignment with internal risk standards and policy requirements.
7. Contribute to the development and execution of efficient processes and safeguards to manage cybersecurity threats.
8. Assist stakeholders in outlining corrective actions for identified control gaps or weaknesses.
9. Serve as a trusted advisor to key process owners in setting priorities and implementing necessary safeguards.
10. Monitor remediation efforts, provide oversight on progress, escalate setbacks, and verify that corrective steps are properly completed.