Information Security Manager (Linux Environment)

Company Overview:

• A global technology leader in high performance computing (HPC) and geoscience software, serving clients globally in sectors such as oil and gas / energy (geoscience). 
• Its innovative hardware and software solutions enable clients to leverage large and complex data sets.
• Operates globally in countries such as Malaysia, Australia, Houston, UK, Abu Dhabi and Middle East.

Position Overview:

• We are seeking an Information Security Manager to take ownership of the company’s cybersecurity posture.
• The Information Security Manager is responsible for protecting the company’s information systems, networks, and data from cyber threats by designing, implementing, and monitoring security controls, policies, and technologies.
• This role focuses on preventive controls, risk management, compliance and security governance.
• The company is operating primarily in a Linux-based environment. Hence, a strong foundation in Linux security is a must.
• You will work closely with IT, cloud, and business teams to ensure security is embedded across systems and processes.
• If you’re a security-minded professional who loves staying ahead of cyber threats, designing secure systems, and creating awareness across an organisation, we want to hear from you
• This is a hands-on, business-facing role, not an SOC position.

Responsibilities:

• Ongoing leadership and review of IT security. Ensure the alignment of cyber security and business objectives within the company. 
• Implementing and designing cyber security policies, procedures and system solutions in line with industry standards and certifications.
• Provide strategic-level guidance for cyber security program and ensure compliance with cyber security policy, standards, regulations and legislation.
• Take ownership of ISO 27001 implementation, compliance, and continual improvement.
• Operate, conduct, and maintain SIEM platform (Wazuh) and conduct regular security audits of systems, policies, procedures, network configuration, operating systems, authentication systems, permission structures.
• Own and manage the patching and vulnerability scanning process, including the use of tools such as OpenVAS or Nessus (preferred). 
• Conduct risk assessments, vulnerability assessments, and penetration test reviews.
• Serve as the point person for third-party security audit.
• Contribute to the development and maintenance of business continuity and disaster recovery plans, with the aim to improve business resilience and ensure the continued operation of critical business processes. 
• Report on the company’s security risk profile, the status of key systems and any outstanding security risks, any planned cyber security uplift activities, any recent cyber security incidents, and expected returns on cyber security investments. 
• Oversee response to cyber security incidents, including how internal teams respond and communicate with each other during an incident.
• Perform security awareness training for employees.
• Work with IT, cloud, and application teams to embed security-by-design.

Requirements:

• Minimum of 7 years of experience in Information Systems and/or Security Management roles.
• Solid hands on experience securing Linux Security systems & environment is a must.
• Relevant certification is an added advantage – CISSP, CISM, CEH, Security+, ISO 27001 etc.
• Solid understanding of information security principles and frameworks such as ISO 27001, NIST, and industry best practices.
• Familiarity with threat detection, vulnerability management, and incident response.
• Proficient knowledge of firewalls, intrusion detection/prevention systems, and endpoint protection tools.
• Proven ability to develop, implement, and enforce effective security policies and procedures.
• Excellent communication skills, including the ability to lead and deliver security training and awareness. programs.

Please be informed that only shortlisted candidate will be notified.

For more information, kindly contact Sunny Khoo via WhatsApp at 012-5164406 or via email at sunny.khoo@peoplelake.asia