SENIOR EXECUTIVE, INFORMATION & CYBER SECURITY at KPJ Selangor Specialist Hospital

, , Malaysia -

Full Time

Start Date

Immediate

Expiry Date

03 Jul, 26

Salary

0.0

Posted On

04 Apr, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Network Security, Cybersecurity, Firewall Management, VPN, SASE, Vulnerability Management, Network Architecture, Incident Response, Zero Trust, Segmentation, SNOC Operations, TCP/IP, Routing, Switching, Cloud Security, Stakeholder Management

Industry

Hospitals and Health Care

Description

GENERAL DESCRIPTION Own and drive the Group’s network and Infrastructure cybersecurity operations, ensuring secure, resilient, and reliable connectivity by managing Citrix VPN, SASE, firewall platforms, and vulnerability management, while leading network design (HLD/LLD), supporting SNOC operations, and coordinating incident response and recovery (IRR) to protect enterprise environments and enabling digital and cloud initiatives. JOB DESCRIPTION Develop, manage, and continuously enhance the operational cybersecurity framework for network and infrastructure domains, ensuring alignment with organizational security policies and objectives. Lead the end-to-end operations of network security technologies, including Citrix VPN, SASE, firewall platforms, and secure connectivity solutions across on-premises and cloud environments. Manage vulnerability management lifecycle, including identification, assessment, prioritization, and remediation tracking for network and infrastructure assets. Design, review, and maintain network architecture documentation, including High-Level Design (HLD) and Low-Level Design (LLD), ensuring secure, scalable, and standardized implementations. Oversee and support Security Network Operations Center (SNOC) activities, including monitoring, alert management, escalation handling, and ensuring high availability of critical network services. Coordinate and execute Incident Response & Recovery (IRR) activities for network and infrastructure-related security incidents, including root cause analysis and preventive measures. Conduct security configuration reviews and hardening of network devices, ensuring compliance with security standards, best practices, and regulatory requirements (e.g., ISO 27001, NIST, CIS Controls). Manage and optimize firewall rules, VPN access controls, and segmentation strategies to enforce least privilege and zero trust principles. Collaborate with infrastructure, cloud, and application teams to integrate security controls into system deployments and transformation initiatives (e.g., digital health, cloud adoption). Coordinate with vendors, service providers, and internal stakeholders to ensure effective delivery, support, and continuous improvement of network security services. Monitor and report operational performance, including incident metrics, vulnerability remediation status, and service availability, through dashboards and management reporting. Drive continuous improvement initiatives, including automation, process optimization, and adoption of advanced security capabilities to enhance operational efficiency and resilience. Success Measures Reduction in network and infrastructure-related security incidents and repeat issues. Percentage of network segmentation coverage aligned to security standards and critical systems. Vulnerability and configuration remediation closure rate within defined timelines. Availability and uptime of critical clinical and business infrastructure services. Effectiveness of incident response and recovery, measured by response and resolution time. Compliance with security configuration and hardening standards (e.g., ISO, NIST, CIS). Effectiveness of firewall, VPN, and access control management to ensure secure connectivity. Accuracy of network architecture documentation (HLD/LLD) and design compliance. Performance of SNOC operations, including monitoring, alert handling, and escalation. Effectiveness of vendor coordination and service delivery. JOB REQUIREMENT Education (Preferred, Not Mandatory) Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field. Professional cybersecurity certification (e.g., CISSP, CISM, CEH, Fortinet NSE or equivalent) will be an added advantage. Knowledge Strong understanding of network and infrastructure cybersecurity, including Firewall, VPN, SASE, and segmentation, with solid fundamentals in networking concepts such as TCP/IP, DNS, routing, and switching. Familiarity with security frameworks and standards (ISO 27001, NIST, CIS), with an understanding of security architecture design (HLD/LLD), as well as knowledge of SNOC operations and incident response processes. Basic understanding of vulnerability management lifecycle and awareness of cloud and hybrid security concepts (e.g., Azure, AWS). Experience 5–8 years of experience in cybersecurity, focusing on network and infrastructure security. Hands-on experience with network security technologies (Firewall, VPN, SASE). Experience in vulnerability management and remediation. Experience in network security design and documentation (HLD/LLD). Exposure to SNOC operations, including monitoring and incident handling. Involvement in incident response and recovery activities. Experience working in hybrid environments (on-premises and cloud). Experience in vendor and stakeholder coordination. Skills & Competencies Strong technical skills in network security technologies (Firewall, VPN, SASE, segmentation). Ability to design and implement secure and scalable network solutions. Good understanding of networking fundamentals (TCP/IP, DNS, routing, switching). Proficiency in security operations, including monitoring, analysis, and incident investigation. Knowledge of vulnerability management and remediation practices. Familiarity with SNOC operations and incident handling processes. Strong analytical and problem-solving skills. Good communication and stakeholder management skills. Ability to work independently and collaboratively in a fast-paced environment. Special Skills Required Strong expertise in network security technologies (Firewall, VPN, SASE, Zero Trust, segmentation). Analytical mindset with ability to drive performance monitoring, reporting, and continuous improvement. Personal Attributes High level of integrity, professionalism, and commitment to maintaining confidentiality of sensitive information. Strong sense of ownership, accountability, and reliability in delivering operational tasks and responsibilities. Proactive, self-motivated, and able to work independently with minimal supervision. Excellent interpersonal and communication skills, with the ability to engage effectively with stakeholders at all levels. Strong analytical mindset with attention to detail and a structured problem-solving approach. Adaptable and resilient in a fast-paced and evolving cybersecurity and technology environment. Strong teamwork and collaboration skills, with the ability to work across cross-functional teams. Willingness to continuously learn and stay updated with emerging technologies, cybersecurity trends, and threats. KPJ Healthcare Berhad is founded on the vision of being the preferred healthcare provider in the region. We are focused on delivering world-class quality healthcare services throughout our regional footprint across 5 countries, namely Malaysia, Indonesia, Thailand, Bangladesh, and Australia. We are in search of remarkable people to join us in exploring and discovering better healthcare solutions together. Whether you are a student, a graduate, or an experienced professional, discover the impact you could make with a career at KPJ.

Responsibilities

The role involves managing the Group's network and infrastructure cybersecurity operations, including firewall, VPN, and SASE platforms. It also requires leading network design, vulnerability management, and coordinating incident response and recovery activities.