CrawlJobs Logo

Infrastructure Security Lead

Malaysia, Kuala Lumpur · Job Posted April 16, 2026
Apply Position
Job Link Share

Job Description

The Infrastructure Security Lead will ensure the security, compliance, and resilience of the organization’s IT infrastructure. This role requires hands-on expertise in infrastructure security management and compliance frameworks, particularly PCI DSS 4.0. The ideal candidate will have over 7 years of IT security experience, with a strong focus on infrastructure security within financial industries. Professional certifications such as CISSP, CISM, CISA, or CCSP are preferred. Responsibilities include maintaining security policies, performing vulnerability assessments, and managing Data Loss Prevention requests.

Job Responsibility

  • Establish, maintain, and periodically review standard operating procedures (SOPs) for business-as-usual (BAU) infrastructure security management
  • Ensure security policies and standards are consistently implemented across on-premises, cloud, and hybrid platforms
  • Establish and maintain processes aligned with PCI DSS 4.0 requirements to support ongoing compliance readiness
  • Maintain and continuously improve processes and documentation related to infrastructure security
  • Perform firewall rule reviews on a periodic basis, ensuring compliance with security policies and risk tolerance
  • Monitor, track, and follow up on remediation of security findings from internal network vulnerability assessments (NVA)
  • Manage Data Loss Prevention (DLP) exception requests and ensure proper governance and approval workflows
  • Oversee the execution of internal NVA and wireless penetration tests, including triage and remediation coordination
  • Ensure timely dissemination of Cyber Threat Intelligence (CTI) to IT custodians for risk assessment and action
  • Coordinate and support cyber insurance review and renewal processes, providing relevant security documentation and updates
  • Prepare, track, and manage monthly infrastructure security KPI reports for management and stakeholders

Requirements

  • Bachelor’s degree in Information Security, Computer Science, or related field
  • 7+ years of IT security experience, with at least 4 years in infrastructure security within financial industries
  • Professional cybersecurity certifications such as CISSP, CISM, CISA, or CCSP are preferred
  • Strong knowledge of firewall technologies, vulnerability management, and DLP tools
  • Experience with PCI DSS 4.0 compliance and other financial industry regulatory requirements
  • Familiarity with threat intelligence, cyber insurance, and IT risk management practices

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Infrastructure Security Lead

8 matching positions

Security Lead – Cloud & IT Security

HPE Operations is our innovative IT services organization. It provides the exper...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field
  • Minimum 10 years in IT security
  • At least 5 years in a leadership role
  • Proven track record in deploying and managing enterprise firewalls (e.g., Palo Alto, Fortinet, Check Point)
  • Strong knowledge of cloud security for AWS, Azure, and/or Google Cloud
  • Experience with DDoS mitigation solutions (e.g., Cloudflare, Akamai, AWS Shield)
  • Experience with Burpsuite
  • Hands-on knowledge of SIEM, SOAR, EDR, and vulnerability management tools
  • Strong analytical thinking
  • Problem-solving ability
Job Responsibility
Job Responsibility
  • Develop and maintain the organization's IT security roadmap aligned with cloud and enterprise infrastructure
  • Lead security design reviews for new systems, services, and cloud deployments
  • Deploy, configure, and manage network security appliances including next-generation firewalls, IDS/IPS, and web application firewalls
  • Implement and maintain cybersecurity protocols, including endpoint protection, identity management, and access control policies
  • Design and operate DDoS protection mechanisms to ensure availability of critical systems
  • Implement and enforce security measures in public, private, and sovereign cloud environments
  • Monitor and audit cloud configurations to ensure compliance with industry standards (ISO 27001, NIST, CIS, etc.)
  • Lead threat modeling, risk assessment, and vulnerability management initiatives
  • Oversee incident detection, response, and recovery processes to minimize business impact
  • Ensure adherence to regulatory and compliance requirements such as GDPR, HIPAA, PCI-DSS
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

It Infrastructure & Security Governance Manager

We are partnering with a highly established international business operating wit...
Location
Location
Switzerland , Zurich
Salary
Salary:
120000.00 - 130000.00 CHF / Year
signifytechnology.com Logo
Signify Technology
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Define, implement, and maintain IT governance frameworks, policies, and standards aligned to recognised security frameworks such as ISO 27001, NIST CSF, and SOC 2
  • Lead IT risk management activities and support internal and external audit processes
  • Oversee hybrid infrastructure and cloud security architecture, including networks, servers, endpoints, and Microsoft cloud environments
  • Manage identity and access governance across Active Directory and Microsoft Entra ID environments
  • Coordinate security monitoring, vulnerability management, and incident response activities alongside external security providers
  • Support business continuity and disaster recovery planning initiatives
  • Oversee data classification and data protection controls across the organisation
  • Act as a key point of coordination between governance, operational IT teams, and third-party vendors
Job Responsibility
Job Responsibility
  • Define, implement, and maintain IT governance frameworks, policies, and standards aligned to recognised security frameworks such as ISO 27001, NIST CSF, and SOC 2
  • Lead IT risk management activities and support internal and external audit processes
  • Oversee hybrid infrastructure and cloud security architecture, including networks, servers, endpoints, and Microsoft cloud environments
  • Manage identity and access governance across Active Directory and Microsoft Entra ID environments
  • Coordinate security monitoring, vulnerability management, and incident response activities alongside external security providers
  • Support business continuity and disaster recovery planning initiatives
  • Oversee data classification and data protection controls across the organisation
  • Act as a key point of coordination between governance, operational IT teams, and third-party vendors
  • Fulltime
Read More
Arrow Right

Lead Security Engineer

We are looking for a Lead Security Engineer to strengthen enterprise data protec...
Location
Location
United States , Johns Creek
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–6+ years of experience in cybersecurity with a strong background in enterprise data protection and security engineering
  • Hands-on expertise with Microsoft Purview, including enterprise-scale implementations for data discovery, classification, labeling, or eDiscovery
  • Strong experience with data loss prevention technologies, with Zscaler preferred, and a solid understanding of the full data governance lifecycle
  • Working knowledge of tools and platforms such as Varonis, cloud security technologies, threat hunting solutions, and data classification platforms
  • Experience with encryption approaches, key management concepts, and securing sensitive data across cloud and on-premises environments
  • Proven ability to lead cross-functional security initiatives, manage stakeholders, and communicate effectively with technical teams and executive audiences
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field preferred
  • Demonstrated leadership skills, including mentoring team members and guiding investigations through resolution
Job Responsibility
Job Responsibility
  • Develop and lead enterprise data protection programs that improve how sensitive information is identified, categorized, and secured across multiple environments
  • Design and implement scalable controls for data governance, labeling, encryption, and key management to reduce risk and support business operations
  • Oversee investigations involving data security events, coordinate remediation activities, and help strengthen response processes based on findings
  • Integrate security telemetry from protection platforms into monitoring and detection solutions to improve visibility into potential data loss activity
  • Direct proactive threat hunting efforts focused on unauthorized data movement, exfiltration risks, and suspicious user behavior
  • Partner with compliance, infrastructure, cloud, and business teams to align protection strategies with regulatory and operational requirements
  • Assess security technologies and external vendors, providing recommendations on solutions that support data protection and governance objectives
  • Mentor security team members and provide technical leadership on enterprise initiatives, best practices, and program maturity improvements
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Lead Security Engineer

We are looking for a Lead Security Engineer to strengthen enterprise data protec...
Location
Location
United States , Johns Creek
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–6+ years of experience in cybersecurity with a strong background in enterprise data protection and security engineering
  • Hands-on expertise with Microsoft Purview, including enterprise-scale implementations for data discovery, classification, labeling, or eDiscovery
  • Strong experience with data loss prevention technologies, with Zscaler preferred, and a solid understanding of the full data governance lifecycle
  • Working knowledge of tools and platforms such as Varonis, cloud security technologies, threat hunting solutions, and data classification platforms
  • Experience with encryption approaches, key management concepts, and securing sensitive data across cloud and on-premises environments
  • Proven ability to lead cross-functional security initiatives, manage stakeholders, and communicate effectively with technical teams and executive audiences
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field preferred
  • Demonstrated leadership skills, including mentoring team members and guiding investigations through resolution.
Job Responsibility
Job Responsibility
  • Develop and lead enterprise data protection programs that improve how sensitive information is identified, categorized, and secured across multiple environments
  • Design and implement scalable controls for data governance, labeling, encryption, and key management to reduce risk and support business operations
  • Oversee investigations involving data security events, coordinate remediation activities, and help strengthen response processes based on findings
  • Integrate security telemetry from protection platforms into monitoring and detection solutions to improve visibility into potential data loss activity
  • Direct proactive threat hunting efforts focused on unauthorized data movement, exfiltration risks, and suspicious user behavior
  • Partner with compliance, infrastructure, cloud, and business teams to align protection strategies with regulatory and operational requirements
  • Assess security technologies and external vendors, providing recommendations on solutions that support data protection and governance objectives
  • Mentor security team members and provide technical leadership on enterprise initiatives, best practices, and program maturity improvements.
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

It Project Manager – Infrastructure, Security & Iam

Robert Half is seeking an experienced IT Project Manager – Infrastructure, Secur...
Location
Location
United States , Escondido
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience managing IT infrastructure projects
  • Proven experience leading enterprise-scale infrastructure or security programs
  • Strong background in IAM and identity lifecycle management
  • Strong background in infrastructure migration or transformation projects
  • Strong background in network, cloud, and data center environments
  • Strong background in security, compliance, and risk management
  • Demonstrated experience leading cross-functional technical teams
  • Strong knowledge of M&A integration or divestiture environments (preferred or required depending on role)
  • Excellent leadership, communication, and stakeholder management skills
  • Experience managing complex dependencies across global IT environments
Job Responsibility
Job Responsibility
  • Lead full lifecycle delivery of infrastructure and security projects from initiation through closure
  • Manage complex enterprise workstreams across Infrastructure, Security, and IAM domains
  • Own delivery of identity transition and environment isolation activities in M&A or transformation programs
  • Define and manage project scope, timelines, budgets, dependencies, and risks
  • Coordinate cross-functional teams including engineering, security, architecture, and operations
  • Ensure alignment with cybersecurity standards, compliance requirements, and governance frameworks
  • Drive execution across Identity & Access Management (IAM), End-User Computing (EUC), Network infrastructure, Cloud platforms (AWS/Azure), Data centers and infrastructure modernization, Lab environments, Security and compliance controls
  • Lead stakeholder engagement and provide executive-level reporting and updates
  • Manage vendors and third-party service providers
  • Identify risks early and implement mitigation strategies
Read More
Arrow Right

AI / GenAI Lead – Infrastructure Automation (Ansible + Python | ServiceNow)

Role Summary: Own automation and AI enablement strategy for infrastructure opera...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience: 10–14+ years
  • Primary Skill Ownership: - Ansible + Python (Infrastructure Automation) - ServiceNow (Orchestration & ITSM integration)
  • Required Skills: - Expert Ansible and Python automation. - ServiceNow workflow and API integration. - Strong infra domain expertise. - Knowledge of GenAI and agent-based automation concepts.
Job Responsibility
Job Responsibility
  • Define and execute infra automation strategy using Ansible and Python
  • Govern automation use cases across Network, Cyber Security, Linux, Windows, and VDI
  • Architect and approve auto-healing and remediation workflows
  • Drive ServiceNow integration for Incident, Change, and Request automation
  • Oversee ELK-driven, event-based automation
  • Define Agentic AI and GenAI roadmap for operations.
  • Fulltime
Read More
Arrow Right

Infrastructure Security Analyst

Are you a security-minded IT professional who enjoys a mix of high-level analysi...
Location
Location
Canada , Waterloo
Salary
Salary:
38.81 - 64.68 USD / Hour
https://www.randstad.com Logo
Randstad
Expiration Date
July 12, 2026
Flip Icon
Requirements
Requirements
  • Expert-level knowledge of Meraki solutions
  • Proficiency with CrowdStrike and Microsoft Intune
  • Strong experience with Entra ID (Azure AD)
  • Diploma or degree in Information Technology from a recognized institution
  • Minimum 2 years of IT experience with a dedicated focus on Information Security
  • Valid driver's license and personal vehicle
Job Responsibility
Job Responsibility
  • Secure the Perimeter: Manage and optimize Meraki network stacks, firewalls, and VPNs
  • Endpoint Defense: Utilize CrowdStrike and Intune to automate infrastructure management
  • Identity Management: Act as the lead on identity and access management within Entra ID
  • Vulnerability Remediation: Identify system configuration issues and coordinate patching
  • Incident Response: Monitor system logs and advise management on security incidents
  • Field Support: Provide hands-on support and training for staff across approximately 40 sites
  • Operations & Support: Provide expert Level 2/3 support for infrastructure issues
  • System Hardening: Develop and implement best practices for securing IT operations
  • Asset Management: Create and maintain a detailed CMDB inventory
  • Compliance & Reporting: Generate weekly KPI reports on cybersecurity metrics
What we offer
What we offer
  • Hybrid Flexibility: Work 1–2 days per week from the Waterloo office
  • Strategic Influence: Provide technical recommendations on new technologies
  • Dynamic Environment: Gain experience in a mission-critical sector (Healthcare/Community Services)
  • Professional Growth: Support for those pursuing or holding CISSP or ITIL certifications
Read More
Arrow Right

Lead Security Consultant

Join us at Barclays as a Lead Security Consultant. At Barclays, we are committed...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Secure by Design – Strong understanding of embedding security principles into solution architecture and system development lifecycles, ensuring security controls are proactively integrated rather than retrofitted
  • Threat Modelling – Experience identifying potential threats, attack vectors, and security weaknesses across applications, infrastructure, and data platforms, with the ability to recommend effective mitigations
  • Security Assessment Scoping – Ability to define and scope security assessments, penetration testing engagements, and risk reviews to ensure appropriate coverage and alignment with business and regulatory requirements
Job Responsibility
Job Responsibility
  • Execution of security risk assessments and building threat models during the change & development lifecycle in order to identify vulnerabilities within the banks IT systems, applications and infrastructure, ensuring that compensating security controls and countermeasures are embedded in order to enhance security posture and resilience against cyber threats provision of timely communication of key findings and recommendations to stakeholders
  • Enablement of DevSecOps (and shift left), by providing engagement channels for customers and stakeholders who wish to engage early seeking security advice and input into their business plans and opportunities, or technology change designs, influencing key stakeholders in COO and CSO to create security strategies to enable business and technology evolution
  • Support and guidance to CISO, CIO and Product Team functions providing security reviews for prospective 3rd party technology products and services
  • Transfer of residual risks to the business/customer as required by the bank’s enterprise risk management framework
  • Collaboration with stakeholder and IT teams to support incident response and investigations using their knowledge of the banks technology systems sharing security insights
  • Participation in the development and maintenance of security policies, standards and procedures aligned to the banks risk tolerance, regulatory requirements and industry best practice
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right