Senior Specialist, Security Engineer

Kuala Lumpur
Permanent
Full-time

29 days ago

JOB RESPONSIBILITIESThis role require a highly skilled and self-driven Senior Specialist in Security Operations to lead the protection of our endpoint ecosystem and support the broader security strategy across the organization. This technical leadership role will be responsible for securing user endpoints (Windows, macOS, BYOD), managing key security platforms (e.g., CrowdStrike, Zscaler, Microsoft Defender), and enabling visibility through active threat hunting and network detection. The role will also support cryptographic key management across IT systems and lead a small team of security operations personnel.· Lead and manage the Security Operations function and a team of 2 members, reporting to the Head of IT Security.· Own and oversee endpoint security posture across corporate laptops and BYOD devices, covering antivirus, web proxy, application control, encryption, and EDR/XDR solutions.· Drive the secure provisioning and hardening of endpoints (Windows/macOS), ensuring compliance with organizational baselines.· Manage and optimize the deployment and operation of:· CrowdStrike Falcon for advanced threat protection and response· Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) for web proxy and zero trust access· Microsoft Defender for Endpoint and Microsoft Intune for security policies, device compliance, and DLP enforcement· Administer cryptographic key management systems (KMS) for secure key lifecycle control across IT systems.· Lead active threat hunting initiatives across endpoint and network layers, utilizing available telemetry, logs, and threat intelligence sources.· Oversee network detection and response (NDR) controls for on-premise network environments.· Conduct regular risk assessments, vulnerability analysis, and mitigation activities across endpoint devices and network infrastructure.· Fine-tune and continuously improve detection rules, response playbooks, and visibility configurations in security tools.· Develop, document, and enforce endpoint security standards, operational procedures, and device onboarding/offboarding practices.· Support and deliver security awareness and technical knowledge-sharing sessions to uplift team and organization-wide capabilities.· Lead or support security incidents, investigations, and root cause analysis when escalated from SOC or IT teams.· Stay up to date with industry trends, threat landscapes, and modern attack techniques to enhance the organization's defensive strategy.REQUIREMENTS· Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Specialization in IT Security is preferred.· 5-7 years of hands-on experience in cybersecurity operations, with exposure to endpoint security, network security, and threat detection.· Strong technical expertise and operational knowledge in:

CrowdStrike Falcon (EDR/XDR) - certification preferred

Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) - certification preferred

Microsoft Defender for Endpoint

· Microsoft Intune - for device configuration, compliance, DLP, and security policy enforcement· Proven experience managing key management systems (KMS) and handling cryptographic key lifecycle for internal systems.· Deep understanding of endpoint protection strategies, including antivirus, web proxy, USB control, application whitelisting, and host firewall configurations.· Solid experience with BYOD risk management, including policy enforcement and limited-access strategies.· Hands-on experience with on-premise NDR, IDS/IPS, and log-based network analysis tools.· Strong grasp of industry-standard frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001) and regulatory compliance requirements.· Proven ability to lead security projects, manage resources, and deliver outcomes independently.· Excellent problem-solving, critical thinking, and troubleshooting skills, especially in incident scenarios.· Strong communication and collaboration skills to work across technical and business teams· Preferred certification:

CrowdStrike Certified Falcon Administrator

Zscaler ZIA/ZPA Specialist

Microsoft Certified: Security Operations Analyst Associate

CISSP, CCSP, or cloud platform certifications (e.g., AWS Security, Azure Security Engineer, Alibaba Cloud Security) are a plus

Sub Specialization : Information Technology;IT Security
Type of Employment : Permanent
Minimum Experience : 5 Years
Work Location : Kuala Lumpur

EPS Consultants

Apply Now