CrawlJobs Logo

IT Security Consultant

Malaysia, Selangor · Job Posted February 20, 2026
Apply Position
Job Link Share

Job Description

Explore a world of opportunities with us. Look ahead with us and help shape innovative solutions to make our world more sustainable and life healthier, more vibrant and more comfortable. At Evonik, you have the chance to explore, thrive, and grow alongside 33,000 colleagues.

Job Responsibility

  • Consulting on current trends in the methodological and technical assessment of IT security requirements
  • Regular analysis of the threat landscape in the IT security environment and review of regulatory requirements and methodologies with regard to information security (e.g., KRITIS, ISO 27001, ISO 27005)
  • Responsibility for continuous monitoring of the IT security level, assessment of threat potentials and residual risks, and development of corresponding recommendations for action
  • Responsibility for the introduction, implementation, and continuous development of a methodology to ensure IT security requirements
  • Participation in the development of new solutions in the IT security environment and conducting security assessments for new or existing security solutions
  • Consulting and support for IT product groups and other Evonik units on information security matters, as well as guidance and consulting for IT projects in this context
  • Responsibility for regular knowledge exchange with stakeholders such as Product Owners, Domain Architects, IP Protection, and OT Security
  • Support of M&A projects during the due diligence phase to assess the security level of the seller’s IT environment and development of measures for temporary protection until integration into the Evonik standard
  • Guidance and consulting for IT M&A projects until the completion of the transition regarding information security
  • Contribution to the creation and updating of IT group standards and active participation in IT committees.

Requirements

  • Successfully completed (technical) university degree in IT security, computer science, economics, engineering, or natural sciences, or a comparable commercial/technical education in the IT field with relevant professional experience
  • Several years of professional experience in the field of information security and proven experience with concepts, protocols, strategies, and best practices in information security
  • Experience in conducting risk analyses including consideration of business impact, assessment of vulnerabilities, effectiveness of measures, and development of strategies for effective risk reduction
  • Strong understanding of the impact of IT security tools/technologies and regulations on business processes, and familiarity with common information security management frameworks such as (ISO) 2700x or the NIST Cyber Security Framework
  • Certification in IT security such as CISM, CRISC, ISO 27001 Lead Auditor, or CISSP
  • Fluent English speaking, both written and spoken
  • Ability and willingness to interact with Evonik personnel and build a network, as well as a high level of initiative, assertiveness, cooperation skills, and team spirit
  • Willingness to travel occasionally (nationally and internationally)
  • Shift working is required for this position.

Nice to have

German is an advantage.

What we offer

  • Attractive career paths and high-quality development programs
  • Performance-based remuneration and occupational health benefits
  • Hybrid and flexible working environments with #SmartWork.

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

IT Security Consultant

8 matching positions

Regional IT & Network Security Consultant

The candidate will be responsible for developing cybersecurity strategy, designi...
Location
Location
India , Bangalore Area
Salary
Salary:
Not provided
airbus.com Logo
Airbus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum Bachelor’s degree in Computer Science, Information Technology, or related field
  • advanced certification such as CISSP, CISM, CEH, etc., would be preferred
  • Experience in working with security frameworks like NIST, ISO27001, PCI DSS, GDPR, etc.
  • Strong knowledge of network protocols, security controls, encryption algorithms, firewalls, intrusion detection/prevention techniques, access control models, and network segmentation concepts
  • Familiarity with security assessment tools and techniques including scanning and testing of networks and applications for vulnerabilities
  • Proficiency in using various operating systems including Windows, Linux, UNIX, and macOS
  • Hands-on experience with security technologies such as SIEM, IDS/IPS, DLP, WAF, VPN, and EDR solutions
  • Knowledge of cloud security principles and best practices
  • Understanding of threat intelligence, Incident Response Plan (IRP), and Disaster Recovery Plans (DRP)
  • Excellent problem-solving and analytical skills
Job Responsibility
Job Responsibility
  • Analyze and assess risks against business operations, recommend mitigation strategies, and monitor effectiveness of risk reduction plans
  • Implement security measures to safeguard information within network systems by ensuring all new hardware, software, and equipment are brought into compliance with established standards
  • Develop, implement, and maintain network security policies, procedures, and associated training plans to ensure awareness and understanding among employees
  • Establish and maintain active participation in system development life cycle (SDLC) projects involving network infrastructures
  • Maintain effective communication with other members of the IT team, management, and external parties involved in system projects or incidents
  • Prepare and deliver executive-level reports on project status, special studies, and proposals
  • Work closely with internal customers to identify needs and resolve problems
  • Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity
  • Provide guidance and mentorship to junior security professionals
  • Fulltime
Read More
Arrow Right

Senior Consultant – IT Infrastructure & Security Audit

My client are looking for a Senior Consultant with strong experience in infrastr...
Location
Location
Saudi Arabia , Riyadh
Salary
Salary:
Not provided
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in IT infrastructure, operations, or security audits at Senior Consultant or Assistant Manager level
  • Strong understanding of network security concepts (e.g. firewalls, VPNs, network segmentation)
  • Experience reviewing data centre operations and physical/technical security controls
  • Background in IT audit, technology risk, or information security
  • Strong analytical, communication, and stakeholder management skills
Job Responsibility
Job Responsibility
  • Perform audits of IT infrastructure and operations, focusing on security and resilience
  • Assess network security controls, including firewalls, VPNs, and related perimeter technologies
  • Review data centre and technical room operations, covering physical security, environmental controls, and operational processes
  • Identify control gaps and security risks, and provide clear, practical remediation recommendations
  • Prepare high-quality audit documentation and reports for management and senior stakeholders
  • Support engagement delivery and mentor junior team members
Read More
Arrow Right

Senior Associate Security Consultant OT Security

The Senior Associate Security Consultant is responsible for developing expertise...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field
  • Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential
  • Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment
  • Moderate level of experience with security architecture design principles
  • Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others
  • Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others
  • Strong interest in cybersecurity and a desire to learn and grow in the field
  • Knowledge of basic cybersecurity concepts, principles, and best practices
  • Familiarity with common security tools and technologies is a plus
  • Excellent analytical and problem-solving skills
Job Responsibility
Job Responsibility
  • Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems
  • Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies
  • Prepares and maintains documentation, including security assessment reports, findings, and recommendations
  • Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies
  • Learns and uses various security tools and technologies for assessments and monitoring
  • Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices
  • Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements
  • Communicates effectively with clients to understand their security needs and concerns
  • Participates in training programs and certifications to develop expertise in cybersecurity
  • Fulltime
Read More
Arrow Right

People Tech Consultant (Workday Release Management and Security Consultant)

As the People Tech Consultant (Workday Release Management and Security Consultan...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
zalando.se Logo
Zalando Sverige
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology, Computer Science, or a related field
  • Minimum of 5+ years of experience in an HRIS technical role, with specific, proven experience in Release Management and Tenant Management for Workday or a similar enterprise system
  • In-depth, hands-on experience with Workday Security configuration, including security groups and security policies
  • Proven ability to manage system change deployment and adhere to strict technical governance standards
  • Strong process governance, analytical, and problem-solving skills to assess the full impact of system updates
  • Exceptional attention to detail, crucial for managing system configuration and security access
  • Excellent coordination and communication skills to work effectively with both technical and non-technical stakeholders
  • Ability to translate complex technical concepts (e.g., security policies, release bugs) into clear, actionable business language
Job Responsibility
Job Responsibility
  • Process Ownership: Own and execute the Release Management Process to govern the introduction and deployment of all software releases by Workday (including biannual feature releases and weekly service updates)
  • Lead the review of Release Notes in the Sandbox Preview environment and coordinate an On-boarding Call with relevant stakeholders
  • Configuration & Deployment: Shortlist critical changes, collaborate with the Tech Consultant to configure required updates, and manage the final, quality-controlled deployment into the production environment
  • Security Oversight: Serve as support party for the Workday Security configuration and maintenance
  • Maintain and continuously review the Workday security model, ensuring proper Role-Based Training Assignment and strict adherence to the Zalando and Workday Standards
  • Provide essential technical support for internal and external system audits related to access control and security compliance
  • Provide clear and timely briefings to the Digital Solution Managers on release implications, necessary changes, and security status
  • Collaborate with cross-functional teams to ensure that new system functionality or security adjustments are communicated effectively and aligned with business requirements
  • Actively leverage Workday Community and Workday Success Plans (WSP) to stay current with the latest features, security best practices, and technical innovations
  • Identify opportunities to strengthen and streamline both the release and security management processes for greater efficiency and compliance
What we offer
What we offer
  • 27 days of holiday a year to start for full-time employees
  • 2 paid volunteering days a year
  • Hybrid working model with up to 60% remote per week
  • Work from abroad for up to 30 working days a year
  • Employee shares program
  • 40% off fashion and beauty products sold and shipped by Zalando, 30% off Lounge by Zalando, discounts from external partners
  • Relocation assistance available (subject to prior agreement)
  • Family services, including counseling and support
  • Health and wellbeing options (including Wellhub, formerly Gympass)
  • Mental health support and coaching available
  • Fulltime
Read More
Arrow Right

Application Security Consultant

We are seeking an experienced Application Security Consultant to join our Cybers...
Location
Location
United States , Parsippany
Salary
Salary:
70.00 - 80.00 USD / Hour
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of hands-on Application Security experience in both offensive and defensive security disciplines
  • Strong experience with SAST and SCA tools such as Checkmarx and Snyk, including vulnerability lifecycle management
  • Deep understanding of OWASP Top 10, web application security, API security, and remediation techniques
  • Experience securing AWS cloud environments, including Lambda, API Gateway, IAM, and S3
  • Familiarity with cloud security platforms such as Orca Security, Wiz, or Prisma Cloud
  • Ability to review and assess code written in Node.js, JavaScript, Java, or Python
  • Experience working with change management, release governance, and production deployment processes
  • Strong understanding of Agile, DevSecOps, and CI/CD security integration
  • Excellent communication, stakeholder management, and project coordination skills
  • Experience partnering with development teams to drive security adoption and remediation efforts
Job Responsibility
Job Responsibility
  • Lead application security design and implementation across web, mobile, and AWS cloud-native environments
  • Conduct secure architecture reviews and integrate security controls into CI/CD pipelines
  • Administer and optimize SAST and SCA tools such as Checkmarx and Snyk, including vulnerability triage, remediation guidance, and ruleset tuning
  • Identify and mitigate application security risks aligned with OWASP Top 10 and industry best practices
  • Secure AWS services including Lambda, API Gateway, IAM, and S3 while collaborating with cloud engineering teams
  • Manage and enhance application-layer security technologies through policy tuning, configuration updates, and threat detection improvements
  • Coordinate with change management and release teams to ensure secure, stable, and compliant production deployments
  • Represent the Application Security team in project planning, architecture reviews, and cybersecurity governance discussions
  • Track security findings, remediation efforts, and project milestones while providing regular security reporting to stakeholders
  • Support DevSecOps initiatives and promote secure coding practices through collaboration with development teams
What we offer
What we offer
  • Medical
  • Dental
  • 401(k)
  • Direct deposit
  • Commuter benefits
  • Fulltime
Read More
Arrow Right
New

Senior IT Consultant

We are looking for a Senior IT Consultant to join our team, supporting clients w...
Location
Location
United States , New York
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in IT audit, technology risk, or advisory work within a consulting or services environment
  • Strong knowledge of SOX compliance and the technology controls that support financial and operational audit objectives
  • Familiarity with recognized internal control and security frameworks such as ISO 27001 and other commonly applied governance or risk standards
  • Ability to assess, organize, interpret, and summarize technical and audit-related data into meaningful conclusions
  • Experience preparing audit findings, documenting recommendations, and producing high-quality client deliverables
  • Proven ability to explain technical concepts and audit issues to both technical teams and senior business leaders
  • Prior experience leading or supervising teams, including work review, coordination, and team development support
  • Interest in current technology trends such as analytics, AI, automation, cybersecurity, cloud computing, privacy, and enterprise applications
Job Responsibility
Job Responsibility
  • Lead technology audit and advisory engagements by assessing IT risks, reviewing control design and effectiveness, and delivering clear conclusions for clients
  • Develop thorough audit documentation, including process narratives, flowcharts, testing approaches, control evaluations, and final reports that support actionable recommendations
  • Evaluate compliance with Sarbanes-Oxley requirements and other applicable control standards, with particular attention to technology-dependent processes and supporting evidence
  • Analyze environments involving cybersecurity, cloud solutions, privacy, disaster recovery, data governance, systems development, and major enterprise platforms to identify control gaps and improvement opportunities
  • Use data analysis, automation, and emerging technologies to improve audit execution, increase insight, and enhance the efficiency of testing procedures
  • Communicate complex technology issues, audit observations, and risk implications to client teams and executive stakeholders in a clear and business-focused manner
  • Mentor entry-level team members through review, coaching, and day-to-day guidance while helping coordinate work across engagement teams
  • Build strong client relationships by understanding business objectives, organizing findings effectively, and presenting practical recommendations that align with operational needs
What we offer
What we offer
  • Medical
  • Vision
  • Dental
  • Life and disability insurance
  • 401(k) plan
Read More
Arrow Right
New

Executive Admin, IT Security

IT Security Admin Location: San Francisco, California (Remote) Role Overview We...
Location
Location
United States , San Francisco
Salary
Salary:
100.00 USD / Hour
apexsystems.com Logo
Apex Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Highly detail-oriented, organized, and proactive with strong follow-through
  • Able to manage multiple priorities and stakeholders in a fast-paced environment
  • Strong calendar management experience supporting senior executives
  • Exceptional written communication skills, particularly via email
  • Proven track record of building systems to manage multiple stakeholders' schedules
  • Comfortable using AI tools to improve speed and accuracy
  • Ability to adapt quickly as priorities shift
  • Discretion with sensitive information
  • Comfortable working independently with minimal oversight once ramped up
Job Responsibility
Job Responsibility
  • Serve as the primary administrative support for one to three executives, including complex calendar management
  • Manage and coordinate calendars for multiple function leads, resolving scheduling conflicts and prioritizing time based on shifting business needs
  • Coordinate and communicate with over 30 external partners, including consultants and auditors
  • Manage high-volume email communications with professionalism and attention to detail
  • Build and maintain systems for tracking meeting requests, action items, and recurring scheduling needs
  • Proactively identify and resolve scheduling conflicts and last-minute changes
  • Support administrative tasks tied to SOX compliance processes, such as tracking documentation and coordinating sign-offs
  • Serve as a point of contact for calendar-related questions and requests
  • Use AI tools to streamline scheduling and administrative workflows
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Life insurance
  • Disability insurance
  • ESPP (employee stock purchase program)
  • 401K program with company match after 12 months
  • HSA (Health Savings Account)
  • SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions
  • Corporate discount savings program
Read More
Arrow Right

Security Consultant

As a Security Consultant, you will lead and support security initiatives for cli...
Location
Location
Belgium , Machelen
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of IT professional experience in Security and Project management
  • Strong knowledge of network and firewall Management (rule approvals, access requests…)
  • Knowledge in Incident response and investigation
  • Knowledge in Vulnerability Management
  • Understanding of security stakeholders' roles such as infrastructure, network management, application development, and IT architecture
  • ITIL, ISO27001, or SIEM certifications (preferred)
  • Excellent communication and team collaboration skills in multi-cultural environments
  • Bachelor's or Master's degree in computer science
  • Fluency in English, Dutch, and/or French
Job Responsibility
Job Responsibility
  • Lead or contribute to cyber security projects for medium to large organisations, working closely with security architects, engineers, and client stakeholders
  • Manage, configure, review, and optimise firewall environments and network security architectures to ensure strong protection and policy compliance
  • Assess customer security needs and recommend appropriate technical and organisational security measures aligned with best practices
  • Develop technical proposals, security documentation, and customer-facing presentations that communicate secure and scalable solutions
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right