Job description

Job Description

The incumbent will be involved in server and endpoint security strategy and technical governance, product configuration standards definition and security engineering advisory.

As a member of the Security Engineering team, the incumbent will be part of the product lifecycle management for the Group Information Security (GIS) technical capabilities. This include product implementation, solution architecture, engineering, production support and service delivery/management, and provide infrastructure security configuration standards definition and technical security assurance over servers and endpoints managed by the infrastructure and platform team.

Responsibilities:

• Develop and maintain the server and endpoint security roadmaps and plan for future enhancements and capabilities as party of continuous improvement process

• Manage product lifecycle for the Group Information Security (GIS) technical capabilities over server and endpoint security solutions which include but is not limited to anti-virus, anti-malware, firewalls, intrusion detection/prevention systems, and other relevant technologies

• Provide production support and monitoring to ensure control efficacy and solution reliability & stability

• Product research and define requirements for new projects, perform product evaluation and technical Proof of Concept

• Support the development of server and endpoint security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices

• Provide support for all audit and regulatory requests

• Provide guidance and advisory for technical security questions that are operational in nature

• Review and grant exceptions to security policy settings that have operational implications for valid business activities (e.g. endpoint policy exception required for application functionality)

Education:

• Degree in Engineering / Computer Science / IT / Cyber Security from a recognized education institution

• Professional security related qualifications (e.g., CISSP, CISA, CISM, ITIL, etc.) will be favorable although not mandatory

Technical Skills:

• Overall experience 8 to 12 years of experience

• In-depth knowledge of system protection and security incident response

• Hands-on experience in both on-premises and SaaS Endpoint Protection Platform (EPP) and Endpoint Detection & Response (EDR) solutions (e.g., Trend Deep Security, Trend Vision One, Symantec SEP, Trellix ENS, CrowdStrike, Cortex XDR, Sentinel One, etc) with the ability to design, size and operationalize solution across large enterprise environment

• Proven experience leading relevant security programs in large organizations

• Strong understanding of regulatory requirements such as MAS TRM, PCI DSS, etc.

• Experience with security monitoring and data analysis using Splunk

• Familiarity with ITIL processes (especially Change, Incident and Service Management)

• Familiarity with ServiceNow, Jira, or other ITSM platforms

• Scripting skills (e.g., Python, Bash) for operational or automation efficiency will be advantageous

Soft Skills:

• Excellent communication, leadership, and collaboration skills

• Process aware mindset

• Strong analytical and problem-solving skills

• Effective time management and organizational skills

• Team player, including ability to establish and maintain effective working relationships within and across the organization

Additional Requirements