Manager, Security Operations - Group Tech

The Manager, Security Operations manages and executes the bank's daily IT security operational posture. This role ensures the continuous operation, compliance, and effective management of security controls and systems that safeguard Hong Leong Bank Berhad's critical IT infrastructure and data assets. The incumbent will lead a dedicated team to execute security operations tasks, drive tactical improvements, and ensure alignment with business and regulatory requirements.

Manage the daily operations of all security appliances and equipment, including Firewalls, Web Application Firewalls (WAF), Endpoint Detection and Response (EDR) solutions (e.g., FireEye), Intrusion Prevention Systems (IPS), and Network Access Control (NAC) systems.

Ensure optimal performance, availability, and configuration for all managed security components.

Ensure adherence to internal policies, industry best practices, and regulatory guidelines, such as Bank Negara Malaysia's RMiT.

Supervise and ensure the timely execution of patching, firmware upgrades, and vulnerability remediation across all security infrastructure.

Contribute to the execution of security technology refresh initiatives, ensuring systems remain secure and performant.

Assist in the design and architecture of new security solutions and enhancements to existing controls.

Collaborate closely with respective IT teams (e.g., Network, Database, Application, IT Risk) and business units to proactively identify and address security concerns.

Validate all security-related changes and configurations before deployment to production environments, ensuring minimal risk and adherence to change management policies.

Ensure that alerts generated from security components are promptly triaged, investigated, and acted upon, following established incident response procedures.

Execute improvements to security monitoring and alerting capabilities.

Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or a related field.

Certifications: Relevant professional certifications such as CISSP, CISM, GSEC, CCNP Security, Fortinet NSE 4+, Palo Alto PCNSE, or equivalent are highly desirable.

Minimum of 7-10 years of progressive experience in IT infrastructure and security roles.

At least 3-5 years in a dedicated security operations supervisory or management capacity, preferably within the financial services industry.

Proven hands‑on experience and in‑depth knowledge of managing and operating a wide range of security technologies (e.g., Firewalls, WAF, IPS/IDS, Endpoint Security, NAC, SIEM integration).

Solid understanding of IT governance, risk management, and compliance frameworks (e.g., ISO 27001, NIST, BNM RMiT, PCI DSS).

Experience contributing to the management of OPEX/CAPEX budgets.

Leadership and Management: Strong leadership and people management skills, with the ability to motivate and supervise a team.

We appreciate your application and will be in touch with shortlisted candidates regarding next steps.