Deskripsi Pekerjaan
British American Tobacco (BAT) is seeking a proactive and detail-oriented Cyber Security Management Specialist to join our Global Business Services (DBS) team in Subang Jaya. In an increasingly complex digital landscape, you will play a pivotal role in protecting our global infrastructure, data integrity, and digital assets.
As a key member of our security operations, you will bridge the gap between technical security engineering and management strategy. You will work within a fast-paced environment, collaborating with international stakeholders to implement robust security frameworks, manage risk, and drive continuous improvement in our cyber resilience programs. If you are passionate about data protection and ready to take your career to the next level in a multinational powerhouse, we invite you to apply.
Tanggung Jawab
- Develop and maintain comprehensive cyber security management policies and operational procedures.
- Conduct regular risk assessments and vulnerability audits across enterprise systems.
- Collaborate with global IT teams to ensure technical security controls are effectively deployed.
- Monitor security infrastructure and lead incident response activities for potential data breaches.
- Maintain compliance with internal corporate governance and international security standards.
- Develop security awareness training materials for cross-functional teams to mitigate human-centric risks.
- Analyze security performance metrics to provide actionable insights for senior management.
Kualifikasi
- Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related field.
- Minimum of 3-5 years of experience in Cyber Security operations or IT security management.
- Strong understanding of ISO 27001, NIST, or similar security frameworks.
- Proven expertise in threat detection, identity and access management (IAM), and network security.
- Relevant certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable.
- Excellent communication skills with the ability to convey complex technical risks to non-technical stakeholders.
- Ability to work effectively in a global, matrix-structured organization.