Job Description

POSITION GENERAL SUMMARY

The OT Cybersecurity Manager is responsible for securing and managing the cybersecurity posture of the MAHB’s operational technology (OT) environments. This role focuses on protecting critical infrastructure, ensuring compliance with industry regulations, and bridging the gap between IT and OT systems to enhance resilience against evolving cyber threats.        

ESSENTIAL POSITION FUNCTIONS

• Overseeing an organization's information security program to ensure the safety, availability, integrity, and confidentiality of its data and systems.
• Develop and implement security policies, procedures, and best practices to mitigate cyber threats and protect against security breaches.
• Manage and maintain all types of security defense technologies in MAHB. 
• Manage a team of cybersecurity professionals, including hiring, training, and performance management. 
• Collaborate within the cybersecurity team, and  other departments within MAHB to ensure that security measures are integrated into all aspects of the business.
• Manage and maintain the security operations process, such as Change Management, Incident Management, Problem Management,etc. pertaining to the security system.
• Keep updated on knowledge and awareness on latest security trends, and provide knowledge sharing when necessary.
• Ability to bridge the gap between IT and OT teams.
• To perform duties with due diligence and professional care in accordance with professional standards and best practises      

Key Challenges

• To ensure understanding and involvement from all level of management and employees
• To obtain the commitment of top management towards cybersecurity activities.
• Cyber threats continue to evolve and become more sophisticated, making it difficult for cybersecurity managers to stay ahead of potential risks and vulnerabilities
• Effective communication with non-technical stakeholders, including operators, engineers, and management.

Skills

• Experience in maintaining system (hardware and software)
• Experience in enterprise network/security infrastructure configuration.
• Familiarity with OT systems like SCADA, DCS, PLCs, and ICS architectures.
• Experience with frameworks like NIST Cybersecurity Framework (CSF) and ISA/IEC 62443 for OT environments. 
• Problem solving in high-stakes environments. Calm and decisive under pressure, especially during OT-specific incidents that may impact safety or production.
• Have a throughout understanding of system functionality including
• overall structures of TAMS subsystem
• Minimum supervision with good interpersonal and communication skills
• Travelling, extra work (After office hour)

Education

External        

• Degree preferably with specialization in computer related discipline and working knowledge of  NERC CIP, ISO 27001, and GDPR as applicable to OT. Industry certification such as CISSP, CISM, GPH, CPT, etc is a plus. 

Unique requirement

• Industrial Control Systems (ICS) & SCADA Knowledge, Network Segmentation for OT, Protocols & Standards for OT, Incident Response in OT, Asset Visibility & Management, OT Threat Modelling, Cross-Department Collaboration and Adaptability to Legacy Systems        

Relevant Industries

External        

• Degree with minimum 7 years relevant experience.
• Experience with cyber security incident response protocols (e.g., preparation, identification, impact assessment, containment, eradication, remediation,  lesson learned, evidence handling, technical reporting, etc.) and safeguarding information.

Additional Information

Open for Malaysian citizens only.
Please be reminded that only online applications will be entertained.
Applications should reach us by 28 January 2025.
Only the shortlisted will be notified.