IT Security Lead
Taylor's Education Group
- Malaysia
- Permanent
- Full-time
- Infrastructure Security: Assess and enhance the security of university network infrastructure, servers, endpoints, and other IT systems to prevent unauthorized access and data breaches.
- Application Security: Ensure that university applications are designed, developed, and maintained with security best practices in mind to mitigate vulnerabilities and protect against cyber attacks.
- Risk Management: Identify, assess, and prioritize security risks and vulnerabilities across university IT systems, and develop mitigation plans to address them.
- Incident Response: Develop and maintain incident response plans and procedures to effectively respond to and mitigate security incidents, breaches, and threats.
- Security Awareness: Raise awareness of IT security best practices among university staff and students through training, workshops, and awareness campaigns.
- Compliance: Ensure that university IT systems and processes comply with relevant regulatory requirements, industry standards, and best practices for IT security.
- Security Monitoring: Implement and maintain security monitoring tools and systems to detect and respond to security threats and suspicious activities in real-time.
- Security Audits: Conduct regular security audits, assessments, and penetration tests to identify security weaknesses and vulnerabilities, and implement remediation measures as needed.
- Vendor Management: Manage relationships with third-party vendors and service providers to ensure that security requirements are met and risks are adequately addressed.
- Security Governance: Establish and maintain security governance frameworks, committees, and structures to oversee and manage IT security initiatives effectively.
- Documentation: Maintain comprehensive documentation of IT security policies, procedures, standards, and guidelines, and ensure that they are regularly reviewed and updated.
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Professional certifications in IT security, such as CISSP, CISM, CISA, or equivalent.
- Proven experience in IT security management, with at least 3 years of experience in a leadership role.
- In-depth knowledge of IT security principles, practices, technologies, and standards.
- Strong understanding of network security, endpoint security, cloud security, and application security concepts.
- Excellent communication, leadership, and interpersonal skills.
- Ability to work effectively in a collaborative team environment and interact with stakeholders at all levels.
- Experience in higher education or academic environments is a plus.