Back to Job Search

IT Manager (Security & Governance)

  • Sector: 信息技术
  • Contact: Ally Ng
  • Client: Monroe Consulting Group
  • Location: Malaysia
  • Salary: Negotiable
  • Expiry Date: 01 June 2025
  • Job Ref: BBBH477405_1740969461
  • Contact Email: ally_ng@monroeconsulting.com.my

Executive recruitment company Monroe Consulting Group Malaysia's Technology Division is recruiting on behalf of a leading aluminium company. Our client is seeking an experienced IT Manager (Security & Governance) to oversee IT security systems and infrastructure, ensuring business continuity and regulatory compliance.

Job Responsibilities

  • Oversee security & stability of IT systems and infrastructure across the organization, ensuring the availability of critical systems.
  • Conduct cybersecurity risk assessments for IT infrastructure, systems, and processes to ensure compliance with regulatory standards.
  • Ensure regulatory compliance by promptly reporting any breaches of law, regulations, or company policies.
  • Improve security processes by establishing and enhancing IT security management system procedures.
  • Enforce IT security policies, procedures, and standards across all IT systems and networks.
  • Conduct operational and process reviews to comply with regulatory standards and consult on corrective actions for audit findings.
  • Assess, respond to, and investigate IT security vulnerabilities and risks, ensuring corrective actions are implemented.
  • Evaluate, recommend, and implement security tools to strengthen security posture according to business needs.
  • Manage security policies, ID management, and system upgrades for nominated IT systems.
  • Analyze security incidents and problems, implementing countermeasures to prevent recurrence.

Job Requirements

  • Minimum 3 years of management experience in information security or cyber risk.
  • Professional certifications (preferred): CISM, CISA, CSXP, CISSP, CREST, GPEN, CCISO, PCI-ISA, or equivalent.
  • Experience with cybersecurity standards such as ISO 27001, NIST Cyber Security Framework (NIST CSF), or equivalent.
  • Strong understanding of IT operations, risk management, and compliance in relation to IT security.
  • Self-motivated and independent, capable of working under broad direction and taking responsibility for tasks and decisions.
  • Excellent stakeholder management skills with the ability to communicate effectively with senior management, business users, vendors, and team members.
  • Fluency in written and spoken English is essential.