PermanentExecutive Search🏢 On-site

Cybersecurity Engineer

Software·Klang, MY·Posted 1w ago

Languages:English

About the Company

Our client is a forward-thinking software company operating in a dynamic, fast-moving regional market. They are committed to building innovative marketing solutions and expanding their brand presence across multiple markets. The company values strategic thinking, collaborative teamwork, and results-driven execution, offering a vibrant environment where marketing professionals can make a meaningful impact on business growth.

Job Description

Job Responsibilities:

•Perform regular, deep-dive manual penetration tests on web applications to identify complex logic flaws, session management issues, and security bypasses that automated scans miss

•Conduct recurring vulnerability assessments of servers (Windows/Linux) and networking devices to maintain infrastructure security posture

•Work directly with the development team to provide technical guidance on vulnerability remediation, including mTLS implementation, API endpoint hardening, and database configuration security (SQL Server/PostgreSQL)

•Select, deploy, and manage the security technology stack (such as Burp Suite Enterprise, Nessus, OpenVAS) to enable continuous monitoring and automated threat detection

•Develop and implement internal security standards for code reviews and server provisioning to embed security into your organization's development lifecycle

•Identify and address security blind spots across the organization's infrastructure and applications

Job Requirements:

•Hold an active OSCP certification (or equivalent hands-on offensive security certification such as OSEP or CPTS) - this is mandatory

•Demonstrate 5+ years of proven experience in offensive security, penetration testing, or vulnerability management

•Show a proven track record of building security processes and frameworks independently in environments where you were the sole security authority

•Possess deep expertise in OWASP Top 10 vulnerabilities with the ability to demonstrate manual exploitation techniques

•Display strong understanding of network security principles including firewalls, VLANs, and VPNs

•Demonstrate proficiency in cloud security architectures and best practices

•Have the ability to read and audit application code with familiarity in .NET environments

•Show hands-on experience deploying, managing, and customizing self-hosted security tools and automation frameworks

Skills & Competencies

Offensive SecurityPenetration TestingVulnerability ManagementManual Penetration TestingInfrastructure HardeningWindows/Linux Server SecurityNetwork SecurityCloud SecurityOWASP Top 10Code Auditing.NETSecurity Tooling (Burp Suite Enterprise, Nessus, OpenVAS)mTLS ImplementationAPI SecurityDatabase Security (SQL Server/PostgreSQL)Firewall ConfigurationVLANsVPNs

Benefits & Perks

Full-time permanent position with job security
On-site work environment fostering collaboration and team culture
Opportunity to lead marketing initiatives across regional markets
Exposure to diverse marketing channels and cutting-edge digital tools
Professional development through event management and strategic project ownership

Why Join Us

Be part of a growing software company making waves in a regional market with real impact on brand visibility and business success
Lead end-to-end marketing campaigns from strategy to execution, owning meaningful business outcomes
Work with cross-functional teams in a collaborative, fast-paced environment that values innovation and strategic thinking
Develop and showcase your marketing expertise across multiple channels, markets, and initiatives
Opportunity to manage budgets, lead teams, and take on expanded leadership responsibilities
Travel and engage with regional stakeholders to strengthen business relationships and market presence

Placed by FIND Talents

Specialist recruitment agency for multilingual, executive, and BPO roles across Malaysia & APAC. Your application is handled confidentially.