IT Security Governance and Risk Management Manager

JOB PURPOSE

• Lead the development and implementation of IT security policies & relevant security documentations and awareness strategies to ensure organization-wide compliance and foster a robust security culture.

JOB RESPONSIBILITIES

• Research, monitor and analyse emerging cybersecurity threats and regulatory requirements.
• Develop, design, and maintain comprehensive policies and guidelines to address security needs and compliance obligations.
• Lead initiatives to improve internal processes, e.g., vulnerability management, policy reviews.
• Drive cybersecurity awareness initiatives (e.g., Security Awareness Talk, Engagement Programmes, Awareness Campaign, Cybersecurity Day, quizzes, workshops).
• Supervise and mentor team members in policy and awareness tasks.
• Act as a subject matter expert for internal stakeholders on IT security policy matters.

JOB REQUIREMENTS

• Malaysian citizen.
• Pass Malay Language including oral test at Sijil Pelajaran Malaysia (SPM) level.
• Possess a Bachelor's Degree in Computer Science/ Information Technology, Cybersecurity or equivalent qualification from accredited higher learning institutions.
• 9+ years of experience in cybersecurity governance, with policy development and awareness exposure.
• Strong leadership, presentation, and stakeholder engagement skills.
• Familiarity with international standards (ISO 27001, NIST, ITIL).
• Professional certifications (e.g., CISSP, CISM, CRISC) are an added advantage.

JOB STATUS

Permanent

All applications are strictly CONFIDENTIAL and only shortlisted candidates will be called in for interview. Applications are deemed UNSUCCESSFUL if there is no feedback from the EPF 2 MONTHS after the closing date of the advertisement.