Senior Manager, Group Information Security Engineering (Endpoint)

FWD Group (1828.HK) is a pan‑Asian life and health insurance business that serves approximately 34 million customers across 10 markets, including BRI Life in Indonesia. FWD's customer‑led and tech‑enabled approach aims to deliver innovative propositions, easy‑to‑understand products and a simpler insurance experience. Established in 2013, the company operates in some of the fastest‑growing insurance markets in the world with a vision of changing the way people feel about insurance. FWD Group is listed on the main board of the Hong Kong Stock Exchange under the stock code 1828.

FWD Technology and Innovation Malaysia Sdn. Bhd. (FWD TIM) is a pivotal shared‑service location within the Group, providing services such as information security, cloud operations, IT solutions delivery, digital and data, actuarial, finance, investments, and customer service.

For more information, please visit www.fwd.com

• Drive FWD IT Security Engineering function as a SME for the Group and all Business Units in Asia Pacific.
• Define and partner with stakeholders in a multi‑disciplined team structure, designing and implementing cloud security solutions across projects.
• Lead stakeholder and vendor engagements, providing subject‑matter expertise to Business Units and engagement teams.
• Develop deep working relationships with senior executives across engagement teams.
• Execute large‑scale project deliveries and manage teams, mentoring junior resources.
• Oversee infrastructure and microservices security architecture, including container, data, network, and operational security.
• Review designs against security regulatory and industry standards (PCI DSS, CSA Containers, etc.) and ensure threat modelling countermeasures are incorporated.
• Build knowledge capital through research and development, delivering best‑of‑breed expertise to stakeholders.
• Lead the growth of cloud security practice across business units, project teams and other stakeholders.
• Drive IT Security Engineering initiatives and projects, defining solutions and architecture, and continuously improving operations frameworks.

• Manage endpoint protection solutions such as Microsoft Defender for Endpoint and CrowdStrike Falcon.
• Develop and enforce endpoint hardening standards, ensuring secure configurations throughout the asset lifecycle.
• Align endpoint security initiatives with the broader Information Security strategic roadmap.
• Automate security operations using scripting languages (PowerShell, Python, KQL) to improve efficiency.
• Maintain configuration scanning policies to ensure endpoints and servers adhere to security baselines.
• Collaborate with cross‑functional teams to deliver endpoint security programs on time and within budget.
• Manage device control policies and ensure compliance with regulatory and internal standards.
• Support integration and policy enforcement through platforms like Microsoft Intune.
• Drive the successful delivery of network security projects, ensuring alignment with Group Information Security strategies.
• Advise Group IT Security and business units on IT security solutions and their organizational implications.
• Define operations frameworks and continuously improve IT Security Engineering initiatives.
• Collaborate across Business Units to ensure consistent execution of security initiatives.
• Report regularly to management on the IT Security Engineering program and associated risks.
• Provide technical leadership and mentorship to junior engineers and project teams.
• Evaluate emerging technologies and recommend improvements to enhance the security infrastructure.

• Deliver IT Security Engineering program upgrades on time and within budget, aligned with the Group roadmap.
• Support continuous uplift of the IT Security Engineering program.
• Ensure program alignment with business objectives and defined timelines.
• Deliver the Group IT Security Engineering Security Framework and controls cost‑effectively.
• Provide governance for all Business Units.
• Conduct program awareness activities when necessary.
• Promote synergy and a people‑first approach across the Group.

• Minimum 10 years working experience in IT Security Management, preferably in Financial Services.
• Proven track record in delivering endpoint security projects and managing enterprise‑grade solutions.
• Regional experience in IT Security Technical or Engineering roles.
• Strong analytical and problem‑solving abilities with a proactive and collaborative mindset.
• Degree in Information Technology or equivalent discipline.
• Technical experience in Identify, Protect, Detect, Respond, or Recover areas.
• Good understanding of cloud environments and network operations in the cloud.

• Relevant Information Security and cloud certifications (CISSP is a plus).
• Proficiency in scripting and automation tools to streamline security operations.
• Proven track record in designing and implementing endpoint security solutions.
• Excellent interpersonal and influencing skills to enforce the IT Security Engineering program.
• Good communication and presentation skills.