Senior Executive, Network Security Compliance

Responsible for compliance strategy and planning regulatory frameworks and related instruments. This role is crucial for enhancing the security, resiliency, and reliability of network infrastructure and services, including Critical Network Information Infrastructure. The incumbent will operationalize strategic initiatives to safeguard the nation's digital assets, protect consumer interests, and align with the National Policy Objectives outlined in the Communications and Multimedia Act 1998 (CMA98).

Job Responsibilities:

1. Formulate and implement comprehensive strategies to enhance compliance with security policies, regulatory frameworks, and industry standards.
2. Design and maintain a robust compliance framework that addresses legal, regulatory, and operational requirements.
3. Support the development of policies and procedures to ensure compliance with the Regulatory Code of Practice; monitor their effectiveness regularly.
4. Lead risk assessment initiatives to identify vulnerabilities in network security; develop strategies for risk mitigation.
5. Collaborate with internal and external stakeholders to promote compliance awareness and foster a culture of security.
6. Evaluate emerging technologies for their impact on compliance; ensure technology implementations support regulatory adherence.
7. Establish metrics to assess the maturity of compliance initiatives; review progress and implement improvements as necessary.
8. Drive continuous improvement efforts by analyzing compliance trends, identifying gaps, and implementing best practices across the organization.
9. Oversee the execution of operational procedures to ensure ongoing compliance with established security policies across all industry players.
10. Conduct regular audits of systems and processes to assess adherence to security standards; compile findings into actionable reports for management.
11. Manage risk assessments to identify vulnerabilities within network operations; develop actionable strategies for risk mitigation.
12. Collaborate with MCMC licensees to ensure all technological implementations align with security policies.
13. Maintain accurate records of compliance activities including audits, assessments, training sessions, and incident reports.
14. Stay updated on changes in relevant laws affecting network security; recommend policy updates as necessary to maintain compliance.
15. Assist in developing metrics to measure the effectiveness of compliance initiatives, and report findings regularly to senior management.
16. Foster relationships with internal stakeholders to promote a culture of operational excellence.
17. Regularly assess the maturity level of compliance initiatives within industry players; monitor implementation improvements based on findings.

Qualifications & Work Experience

• Minimum Bachelor’s Degree in Telecommunication, Information Technology, Computer Science or relevant discipline from a reputable University/College.
• Minimum of 5 - 9 years of working experience in the regulatory and/or information and cyber security domain will be an added advantage.
• Experience in Information Security Audit / Compliance / Technology Evaluation will be an added advantage.
• Problem-solving skills and out-of-the-box thinking.
• Ability to multitask, work independently, and work under pressure with minimum supervision.
• Experience in Network / Information Security Audit/Compliance.
• Strong strategic communication skills.
• Legal / Judicial Knowledge.
• Analytical Thinking.
• Teamwork and collaboration skills.
• Attention to detail.
• Excellent communication and presentation skills in BM & English.

Note: Candidate must be willing to work in Cyberjaya.

Additional Information:

This job is active; applications are being accepted. Salary expectations and applicant details are requested during application. The role offers perks including annual leave, medical benefits, SOCSO, and personal accident coverage.