AVP, IT Security

The role will be responsible for designing, implementing, and maintaining robust cybersecurity measures as part of the IT Security team to provide cyber assurance and safeguard the organization's systems, applications, and data. This role requires a proactive approach to identifying and mitigating risks, ensuring compliance with security standards, and embedding security into every stage of technology lifecycle. You will act as a trusted advisor to the wider IT teams, promoting security awareness and best practices across the organization. The key responsibilities of the Security Analyst include:

Vulnerability Patch Management

• Monitor, prioritize, and collaborate with IT and application teams to ensure timely patch deployment and remediation of vulnerabilities across systems and applications within defined SLAs.

System Hardening Review

• Conduct regular reviews of configurations across servers, endpoints, and network devices to align with security best practices and regulatory requirements.

Malware Protection

• Implement, manage and regularly review malware protection, detection and response strategies.

Security Architecture and Design

• Collaborate on secure architecture and design initiatives to embed Secure-By-Design principles in new projects and tech refreshes.
• Develop and maintain secure architecture frameworks for applications and infrastructure.

Security Risk Assessments

• Perform security risk assessments, including vulnerability assessment & penetration testing (VAPT), source code reviews, and threat modeling to proactively identify risks and recommend mitigation strategies.

Cyber Risk & Threat Intelligence Management

• Monitor threat intelligence feeds and assesses potential impact on the organization.
• Provide actionable insights to strengthen defenses against emerging threats.

Data Loss Protection

• Implement and manage Data Loss Prevention (DLP) tools and policies.
• Monitor data flows to prevent unauthorized access or exfiltration.

Cyber Security Tools Deployment

• Deploy, configure, and maintain security tools (SIEM, EDR, DLP, vulnerability scanners, etc.).
• Ensure tools are optimized for performance and coverage

Qualifications & Skills:

• Bachelor's degree in Computer Science, Information Security, or related field.
• 7+ years of experience in cybersecurity roles (security engineering, operations, or architecture).
• Strong knowledge of security frameworks (ISO 27001, NIST, CIS).
• Hands-on experience with vulnerability management, SIEM, EDR, and DLP solutions.
• Familiarity with secure-by-design principles.
• Excellent analytical and problem-solving skills.
• Relevant certifications (e.g., CEH, CISSP, OSCP, CISM) are a plus.
• Strong communication and collaboration skills.
• Proactive mindset with attention to detail.

The successful candidate can expect a competitive package that includes an attractive basic salary, annual bonus and variable bonus. Please submit your detailed resume, including expected salary and contact number.

(We regret that only short-listed candidates will be notified)