Share this Job

IS SOLUTION & ARCHITECTURE (IT) (OUTSOURCE)

Date: 11-Jul-2021

Location: PJ, MY

Company: Celcom Axiata Berhad

Job Description

JOB PURPOSE:

Rresponsible for maintaining and updating the Telco specific Security Solution architecture and blueprint throughout Celcom. It’s also plays a vital part in the planning, design and deployment of Celcom’s fundamental infrastructure, processes and services to ensure security risks related to technology adoption are addressed and managed appropriately.

ACCOUNTABILITIES /KEY RESPONSIBILITIES:

  • Advice the Head, Information Security Strategy and Architecture in the development of Celcom’s Enterprise Information Security Solution Architecture
  • Collaborate with project planning team to ensure that overall Celcom Information Security Governance is achieved in the areas of the Celcom Group IT & Group Network infrastructure and business solutions.
  • Provide input, gather requirements and propose improvement of Group IT / Group Network Technical Security Architecture blueprint
  • Develop, lead and manage the security solution project in order to ensure that the business users are provided with the required security tools, information and support to minimize the risks against internal and external threats.
  • Organize, plan and control all security requirements for Celcom Information Security Projects as to ensure it comply to Security Architecture standard and best practices.
  • Identify and propose technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
  • Develop, lead and manage the security solution project in order to ensure that the business users are provided with the required security tools, information and support to minimize the risks against internal and external threats.
  • Provide security consultation with regards to security product and non – product centric are aligned with Celcom Information Infrastructure Security architecture design
  • Lead and execute complex Celcom Information security projects inclusive preparation of RFI/ RFQ and RFP, evaluations, vendor engagements and utilize project management skills to achieve the goals
  • Contributes in preparing budgets for the solutions and provide inputs for the yearly organization budgets business plan

QUALIFICATIONS, EXPERIENCE & SKILLS/COMPETENCIES

QUALIFICATIONS:

  • Bachelor degree holder (IT or related technical preferred) with Information Security knowledge
  • ISO 27001 Implementer / Lead AuditorCISA / CISM/ CISSP (would be an advantage)
  • Good understanding of Information security related standards and best practices (these include ISO 27001, NIST, PDPA, PCI-DSS, Cybercrime act, CSA, IETF,TIA, ETSI etc.)Good understanding of Cyber laws and Law enforcement requirements

EXPERIENCE:

  • At least 7-10 years working experience in IT Security, Information Security Architecture / Engineering or related fields.
  • LAN, WAN and Internet networking technology,
  • OS, database and application concept
  • Security solutions such as IPS, firewall and WAF
  • Sound understanding of the latest threat landscape and the technologies that need to be in place to mitigate these threats 

TECHNICAL & BEHAVIOURAL COMPETENCIES/ SKILLS

  • Excellent communication skills – written and verbal – to deal with technical and non-technical users.
  • Ability to communicate information security principles, policies, rationale and standards.
  • Foster very strong technical skills with particular emphasis on Enterprise IT Security which includes but not limited to security attacks and prevention, protection concepts and technologies, and security governance.
  • Close monitoring and maintenance of records to enable quick response to alerts, incidents, problems and changes.
  • Good judgment demonstrated in situations where balancing conflicting demands and taking pragmatic decisions is important
  • Good understanding of security assessment methods, tools and best practices (baselines, standards & etc.)
  • Understanding of Telecommunication Company Infrastructure and applications (Billing platforms, online and customer facing platforms).
  • Understanding of Information Security Principles
  • Understanding of Information Security Risk Management processes
  • Information Security standards and best practices (these include ISO 27001, NIST, PDPA, PCI-DSS, Cyber crime act, etc


Job Segment: Solution Architect, Architecture, Telecom, Telecommunications, Engineer, Technology, Engineering