Deskripsi Pekerjaan
Are you a technical security professional eager to safeguard a global enterprise? Würth IT is looking for a dedicated Information Security Auditor - Technical to join our team in Kuala Lumpur. In this strategic role, you will play a critical part in securing the Würth Group’s digital ecosystem by conducting rigorous technical security audits. You will evaluate complex infrastructure, uncover hidden technical risks, and develop robust strategies to strengthen cyber resilience across our worldwide operations. We need an analytical thinker who can translate technical findings into actionable insights for our stakeholders. If you are passionate about cybersecurity and want to make a tangible difference in a multinational environment, we want to hear from you.
Tanggung Jawab
- Conduct comprehensive technical security audits and assessments of global IT infrastructure, networks, and applications.
- Analyze network architecture, system configurations, and data flows to identify vulnerabilities and security misconfigurations.
- Perform detailed risk assessments to quantify and prioritize security exposures within the Würth Group.
- Review and evaluate access controls, authentication mechanisms, and encryption standards to ensure compliance.
- Develop and implement remediation plans and technical recommendations to address identified security weaknesses.
- Ensure strict adherence to international security standards, internal policies, and regulatory requirements (e.g., ISO 27001, NIST).
- Collaborate closely with IT operations and business units to foster a culture of security awareness and technical best practices.
Kualifikasi
- Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
- Professional certification such as CISSP, CISA, CISM, or CEH is highly desirable.
- Minimum of 3-5 years of experience in IT audit, security analysis, or penetration testing.
- Deep understanding of network protocols (TCP/IP), operating systems, and security frameworks.
- Strong proficiency in security tools, audit methodologies, and risk management software.
- Excellent written and verbal communication skills in English, with the ability to present complex technical data clearly.