Job Description

POSITION GENERAL SUMMARY

• To support the implementation of security measures, including software and hardware solutions, to detect and prevent cyber threats from compromising the security and functionality of the platform.
• Support yearly exercise of vulnerability assessment and penetration test (VAPT),  administration, management, configuration, testing, and integration tasks related to the virtual patch management (VPM), internal vulnerability management system (IVAS), and other platform defense mechanism adopted by MAHB in the future.

ESSENTIAL POSITION FUNCTIONS

Vulnerability and Threat Management Strategy

• Execute a comprehensive vulnerability management program for MAHB which includes identifies, assesses, prioritizes, and remediates vulnerabilities in your organization's systems, applications, and infrastructure.
• Monitor and provide the vulnerability management program's performance and report on its effectiveness to stakeholders, both internal and external.
• Support all associated activities related to the yearly vulnerability assessment and penetration testing (VAPT).
• Assist in design, manage, configure and monitor all related activities related to the virtual patch management
• Support cross-functional teams (Infrastructure, DevOps and application) to address and mitigate critical vulnerabilities in a timely and efficient manner.
• Assist to evaluate and improve vulnerability management processes, identifying opportunities for automation, efficiency, and integration of new technologies or best practices

Vendor & Outsourced VAPT Management

• Assist in defining and monitoring VAPT related deliverables in service contracts.
• Ensure knowledge transfer and transparency between outsourced teams and internal stakeholders.
• Manage relationships with vendors and service providers to evaluate and implement security solutions that enhance the organization’s vulnerability management capabilities.
• Serve as the secondary liaison between the organization and the third party vendor/service provider.
• Ensure that SLAs, KPIs, and quality expectations are met by the outsourced provider.

Tool and Technology Management

• Manage all security equipment, focusing on vunerability scanner, virtual patch management and other platform defense technology adopted in the near future. Promptly act on alerts by examining potential security and data issues.
• Manage and maintain the security operations process.
• Integrate and manage tools such as vulnerability scanners and threat intelligence platforms.
• Drive continuous improvement of alerting logic, automation, and dashboards.

Team Development & Collaboration

• Collaborate with other unit IT, cybersecurity units and external stakeholders to ensure timely patching and mitigation of identified vulnerabilities.
• Foster a security-conscious culture by leading training programs and initiatives to raise awareness about vulnerability management, secure coding practices, and potential threats across the organization.
• Work closely with IT, DevOps, and development teams to ensure vulnerability management is integrated into the software development lifecycle (SDLC), cloud infrastructure management, and other operational processes.
• Keep updated on knowledge and awareness on latest security trends, and provide knowledge sharing when necessary.
• Contribute to threat hunting and Red/Blue/Purple teaming efforts.
• Assist Senior Executive Vulnerability Management to work with vendors and third-party security solutions to ensure successful services.

Key Challenges

• To ensure understanding and involvement from all level of management and employees.
• To get top management commitment in compliance activities.
• To get all staff and management to adhere to policies, procedures and internal control.

Skills

• Familiar with regulatory frameworks: Act 854, PDPA, NACSA CNII, CAAM AVSEC Cyber Guidelines
• Strong teamwork, collaboration, and interpersonal skills to work with internal IT, OT, and security teams.
• Proficient in Bahasa Malaysia and English.
• Good understanding of cloud security, including identifying and mitigating vulnerabilities in cloud environments such as AWS, Azure, or GCP
• Demonstrate understanding of network security, system administration, and secure software development practices.
• Knowledge in system, infrastructure and application architecture.
• Understanding of system functionality including overall structures of TAMS subsystem
• Minimum supervision with good interpersonal and communication skills
• Knowledge of OWASP Top 10 vulnerabilities (e.g., SQL Injection, XSS, CSRF).
• Understanding of web technologies like HTML, CSS, JavaScript, JSON, HTTP/HTTPS, RESTful APIs, WebSocket, and session management,
• Knowledge of modern threat landscapes, including emerging vulnerabilities, attack vectors, and mitigation techniques.
• Familiar with frameworks such as MITRE ATT&CK, ISO 27001, NIST SP 800-61.
• Familiarity with vulnerabilities and best practices for cloud environments (AWS, Azure, GCP), including cloud-native security tools and services

Education

EXTERNAL

• Degree preferably with specialization in Computer Science/IT or equivalent.

Technical Certification

• CompTIA Security+, CEH, GSEC, or equivalent

Relevant Industries

EXTERNAL

• 1-3 years of cybersecurity and vulnerability management or penetration testing experience.
• Knowledge of vulnerability scanning tools (e.g., Nessus, Qualys, Tenable) and techniques for managing vulnerabilities across various environments (on-premises, cloud, hybrid).

Additional Information

Open for Malaysian citizens only.

Please be reminded that only online applications will be entertained.

Applications should reach us by 27 February 2026.

Only the shortlisted candidate will be notified.