Manager, IT Security Engineering
Malaysia - KL Eco City
FWD Insurance
We’re FWD. A different kind of insurer with a vision to change the way people feel about insurance. Discover our story.About FWD Group
FWD Group is a pan-Asian life and health insurance business with more than 12 million customers across 10 markets, including some of the fastest-growing insurance markets in the world. The company was established in 2013 and is focused on changing the way people feel about insurance. FWD’s customer-led and digitally enabled approach aims to deliver innovative propositions, easy-to-understand products and a simpler insurance experience.
For more information, please visit www.fwd.com
FWD Technology and Innovation Malaysia Sdn. Bhd., known as FWD TIM, was established in late 2019. Strategically located in Kuala Lumpur, FWD TIM serves as a pivotal shared service location within FWD Group, providing services to multiple markets across the Group. FWD TIM houses a diverse and talented workforce focused on essential business and technology services such as information security, cloud operations, IT solutions delivery, digital and data, actuarial, finance, investments, and customer service, among many others. FWD TIM is dedicated to drive and deliver operational excellence and efficiency, foster innovation and ensure regulatory compliance across all business functions as well as maintain a competitive edge in the market.
PURPOSE
- Manage and drive end-to-end NetSec engineering projects and operations for Group Office and all markets, in accordance with Group information security standards and requirements as well as FWD Group technology strategy, policies and procedures.
- Act as the SME and primary technical contact and ensure timely and effective resolutions within SLA and the established processes and SOPs for WAF & Firewall technology operations and management.
KEY ACCOUNTABILITIES
- Develop and maintain deep technical and functional knowledge and be the SME for WAF, while supporting other emerging tools/services, as part of the new NetSec Engineering & Operations team.
- Lead, coordinate and ensure the delivery of change implementation are carried out in accordance with the defined ITILv3 processes.
- Function as the L3 Technical Engineer and primary escalation point for WAF services to business units and internal teams within Group IT Security and Group Technology.
- Lead, coordinate and manage planned change requests and implementation as well as coach NetSec Ops engineers in providing support on Incidents (P1/P2) and service requests.
- Manage and coordinate potential incidents escalations, for investigation, along with the relevant internal or external stakeholders.
- Lead and manage the communication and coordination of the NetSec incident response actions with business units and ensure smooth and proper closure of the Incident Response cases.
- Contribute to the design & planning requirements on new initiatives and upgrades related to WAF and Firewall through close collaboration with vendors and internal teams within Group Security Engineering.
- Contribute to build, review and handover BAU requirements including guidelines, baselines and SOPs for Group IT Security Operations, to manage the implemented IT Security solutions and controls.
- Assist to research on process improvement for existing solutions and services by working closely with internal teams and vendors.
- Work closely with Service Management, Security Governance, Security Operations, and Incident Response teams to deliver objectives.
- Provide guidance and expertise to stakeholders and business units as and when needed with regards to NetSec services, mainly on Firewall management.
- Adopt a Cloud-first strategic mindset on deliverables.
- Manage relationships and performance quality delivered by vendors.
- Contribute to the review and implementation of key areas defined for improvement for WAF & Firewall management. Contribute to the regular NetSec Engineering and Operations updates for management reporting.
KEY PERFORMANCE INDICATORS
- Ensure operations and management of services are delivered within agreed SLAs across FWD group and business units.
- Support the NetSec Lead and Head of Security Engineering in continuous uplift of deliverables.
- Ensure deliverables across Business Units are carried out in alignment with FWD business objectives and mandated timelines.
- Ensure deliverables are carried out in a cost-effective manner utilizing available processes and resources (including people and technologies) aligned with the FWD business goals.
- Provide continuous support and consultation with regards to deliverables across FWD Group and Business Units.
- Conduct periodic review assessments on existing controls and processes related to deliverables.
- Doing things right, creating synergies for the overall FWD goals and objectives, along with a people-first approach.
EXTERNAL & INTERNAL CONTACTS
- Senior Manager (NetSec) – Group Security Engineering
- Head of Security Engineering
- Group CISO
- Group and Business Units Chief of Technology and Operations
- Group and Business Units IT & Operations
- Group and Business Units Internal Audit
- External Auditors
- Vendors and/or Service Providers
QUALIFICATIONS / EXPERIENCE
- Minimum 6 years working experience in IT Security Management role, preferably in Financial Services.
- Bachelor’s Degree from Information Technology or any equivalent discipline.
- Minimum 3 years of working experience with WAF and Firewall technology/products, especially F5, Checkpoint and Palo Alto.
- Reasonable experience on supporting threat detection and analyzer tools such as Skybox, Algosec, IPS/IDS
- Good understanding on next-generation technologies such as SASE, FWaaS & XDR.
- Certifications such as CISSP, or anything related to Cloud/Network Security would be an added advantage.
- Enterprise-level experience in managing IT Security processes and Engineering initiatives.
- Sound understanding of the NIST framework and CIS Benchmarks.
KNOWLEDGE & TECHNICAL SKILLS
- Firewall Products: Checkpoint, Palo Alto, Cisco
- Analyzer & Management Tools: Algosec, Skybox, Panorama, CPSM
- Firewall, WAF & Web Proxy: Palo Alto, F5, Zscaler
- Familiar with Cloud technology providers such as Azure and AWS.
- Certifications or official training on any of the above would be an added advantage.
- Basic understanding on Automation/AI/Machine Learning to simplify operations would be an added advantage.
- Excellent team player and fast learner with good leadership skills.
- Good communication and presentation skills.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure CISO CISSP Cloud Compliance Finance Firewalls Governance IDS Incident response IPS Machine Learning Network security NIST SASE SLAs Strategy Threat detection XDR
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.