Job Summary

  • Company
  • Location
  • Keywords / Skills
    IT Security,Information Security,Information Technology,Penetration,Network Security,Cyber Security,Cyber Security Analyst,Fresh Graduate,IT Associate,IT Assistant,Senior Associate
  • Years of Experience
    0 - 2 years
  • Function
    Full Time, Employee
  • Education
  • Role
    • System Analyst/ Tech Architect • Testing • Fresh Graduate • Security Analyst
  • Industry
  • facebook
  • twitter
Associate / Senior Associate – Cyber Defense/Penetration Testing
Responsibilities :
Working as part of our security team, you will be responsible for the following:
• Performing penetration testing and vulnerability assessment on various types of technologies, implementations and industries. These includes:
- Penetration testing using automated tools and manual techniques
- Mobile and web application penetration testing 
- Network penetration testing
- Host and database assessment and security configuration review
- Wireless security assessment
- Network security architecture design review 
- Source code security reviews 
- Cyber security maturity assessment
• Performing incident response and forensics investigations, which includes:
- Host and network forensics investigations
-Malware analysis and reverse engineering
- Incident response and handling
• Developing subject matter expertise in topics related to cyber security and penetration testing
• Researching and analyzing known penetration testing methodologies, vulnerabilities and exploits, and tools and techniques
• Working with regional and global team members in conducting penetration testing
• Writing reports detailing findings and recommendations, and preparing presentations and communicating with clients on the results of penetration testing
• Conducting training and knowledge sharing with team members

Requirements :
• Possess strong enthusiasm and interest in information security
• Able to document technical information for executive level reporting and presentation
• Ability to work unsupervised and within team environment
• Able to communicate effectively in both written and spoken English
• Good communication, presentation and interpersonal skills
• Independent, self-motivated, organized, and results oriented individuals capable of handling multiple tasks and achieving tight deadlines
• Strong analytical and management skills
• Strong technical knowledge in operating systems, networking, applications, and a good understanding of security issues

• Fresh graduate or with 1 – 2 years of relevant experience and/or basic knowledge in information security for Associate level
• 2 – 4 years of proven technical security experience for Senior Associate level
• Previous experience in system administration and application development (mobile and web) would be an added advantage
• Able to demonstrate experience, knowledge and skills in utilizing common penetration testing and vulnerability assessment tools and techniques
• Familiarity with common penetration testing methodologies such as OSSTMM, OWASP and others
• Familiarity with security industry best practices such as SANS, NIST and CIS
• Experience/understanding of networking, including port numbers, services, protocols, TCP-IP stack and OIS-Model
• Experience/understanding of security principles, policies and industry best practices

Qualifications and Certifications:
• A Bachelor's or Master’s Degree in Computer Science/Information Technology/Cyber Security/Engineering/any related field
• Candidates with the following certifications would have an advantage:
- Certified Information Security Manager (CISM) 
- Certified Information Systems Security Professional (CISSP) 
- Certified Ethical Hacker (CEH) 
- Offensive Security Certified Professional (OSCP) 
- Relevant SANS training/certifications
About Company

KPMG first established a presence in Malaysia in 1928 and the Malaysian firm has grown to be a part of the global success of KPMG's network of firms. KPMG's operations in Malaysia are carried out in association with KPMG Desa Megat & Co. The Malaysian firm has over 2,000 staff located across 8 offices.

Our single management structure for all our Malaysia offices allows efficient and rapid allocation of experienced professionals wherever the client is located in the country. The flexibility of this single structure allows us to effectively serve companies across Malaysia, and we have many projects where professionals from different offices work together on a work engagement under the supervision of a single nominated client partner, who has operational control of all resources.

We have established industry groups which enable the delivery of targeted, industry-specific experience, expertise and methodologies. The focus on industry and country-specific knowledge helps us deliver exceptional people with an intimate knowledge of our client’s specific business issues, deep industry expertise as well as an overriding commitment towards service excellence.