Job Summary

  • Company
  • Location
  • Keywords / Skills
    Security standards,Guidelines (CIS, OWASP)
  • Years of Experience
    6 - 8 years
  • Function
    Full Time, Employee
  • Education
  • Role
    Software Engineer/Programmer
  • Industry
  • facebook
  • twitter
Assistant Manager – RC – Emerging Tech Risk & Cyber (Penetration Testing)

Responsibilities :

As part of our regional and global security team, you will be responsible for:

• Management and delivery of the penetration testing and security assessment projects. The projects


o Penetration testing using automated tools and manual techniques

o Mobile and web application penetration testing

o Network penetration testing

o Host and database assessment and security configuration review

o Wireless security assessment

o Network security architecture design review

o Source code security reviews

o Cyber security maturity assessment

• Resource management for various projects

• Review and quality assurance of deliverables

• Supervision of associates and senior associates working on projects

• Professional development and coaching of team members

• Coordinating methodology development and updates and overall improvement of delivery of projects

• Participating in business development activities which includes preparation of proposals and


• Acting as subject matter expert in cyber security

• Supporting the service line leader in strategic initiatives

• Ability to identify new emerging threats and trends in terms of security testing

Requirements :


• Possess strong enthusiasm and interest in information security

• Able to document technical information for executive level reporting and presentation

• Good communication, presentation, interpersonal, and stakeholder management skills

• Independent, self-motivated, organized, and results oriented individuals capable of handling multiple

tasks and achieving tight deadlines

• Strong analytical and management skills

• Excellent understanding of security controls and their relation to project delivery; security standards and

guidelines (CIS, OWASP), etc

• Ability to multiple tasks and meet tight deadlines


• At least 6 to 8 years’ experience in information security and testing, out of which at least 3-4 in team lead

and / or team management role

• Exposure to a range of industries would be ideal, but not essential. Likely industry exposure will include

government, health, energy & natural resources, manufacturing and finance.


• A Bachelor's Degree in Computer Science,/Information Technology/Engineering/any related field.

• Candidates with the following certifications would have an advantage:

o Certified Information Security Manager (CISM)

o Certified Information Systems Security Professional (CISSP)

o Certified Ethical Hacker (CEH)

o Offensive Security Certified Professional (OSCP)

o Relevent SANS training/certifications

About Company

KPMG first established a presence in Malaysia in 1928 and the Malaysian firm has grown to be a part of the global success of KPMG's network of firms. KPMG's operations in Malaysia are carried out in association with KPMG Desa Megat & Co. The Malaysian firm has over 2,000 staff located across 8 offices.

Our single management structure for all our Malaysia offices allows efficient and rapid allocation of experienced professionals wherever the client is located in the country. The flexibility of this single structure allows us to effectively serve companies across Malaysia, and we have many projects where professionals from different offices work together on a work engagement under the supervision of a single nominated client partner, who has operational control of all resources.

We have established industry groups which enable the delivery of targeted, industry-specific experience, expertise and methodologies. The focus on industry and country-specific knowledge helps us deliver exceptional people with an intimate knowledge of our client’s specific business issues, deep industry expertise as well as an overriding commitment towards service excellence.