Job Overview:

The Exposure and Threat, Vulnerability Management Lead primarily function is for strengthening & enhancement exposure and threat, vulnerability management team through Technical Vulnerability Analysis to all Critical point infrastructure of SGL IT environment and to do Technical Penetration Testing regularly.

A Lead is responsible for delivering effective and efficient Global wide Security Project and support for Security related appliance and he/she will also be a primary contact Security Hardening and Security support and assessment of new Security Appliance for External Exposure and Technical Vulnerabilities and its Implementation.

Education & Experience Requirement

• Education: Any Bachelor of Science in IT, Computer Engineering, Computer Science, Electronics & Communications Engineering.
• Experience Requirement: 10+ years for equivalent IT Security “Specialist” / Lead position. This is for a Technical Lead position.

Specific Roles and Responsibilities:

• Utilize Rapid7's Exposure Command Advanced to provide comprehensive attack surface visibility and risk management across hybrid environments.
• Conduct extensive cloud and on-premises monitoring, including attack path analysis, risk prioritization, and vulnerability management.
• Integrate external scans with a detailed inventory of internal assets to deliver complete visibility into the attack surface.
• Identify and address misconfigurations, shadow IT, and compliance issues.
• Monitor data for changes and take action using workflows to ensure proactive risk mitigation and rapid response.
• Vulnerability Management and Remediation.
• Penetration Testing for IT environment, Web App,
• Threat Detection Analytics, PowerBI & M365 Defender
• Security Hardening, Security controls enhancement
• Experience in Microsoft Defender for Cloud.
• Assist in 3rd party vendor Pentest and ensures recommended remediations would be
• implemented.
• Keep current with emerging threats.
• Improve & Implement IT Security Policy/controls based on Cybersecurity Framework and
• best practice.
• Troubleshoot and limit the impact of false-positive within security tools.
• Ensures the Security Hardening for Endpoint, Servers and Network Devices.
• Ensures Data at Rest and in-transit are Encrypted.
• Ensures full compliance of Endpoint Security to all Endpoints & Servers
• Ensures User’s Account full compliance with Security.
• Risk Assessment and Audit/Assessment recommended remediation.
• Performs Firewall Ruleset Review.
• Perform troubleshooting for the mentioned Security technology below.
• Change Management Security Impact Assessment.
• Ensures Back-up solution is always prepared for any emergency use.
• Perform a given task and target based on KPI and Team discussion.
• Willing to be in late afternoon schedule. This is to extend to Security Incident hours
• coverage.
• Participate in an on-call Security Operation rotation.
• Amenable to work onsite.

Please refer to job description.