Hiring Company

Job Description

ANALYST, STRATEGY & ARCHITECTURE

OVERVIEW: 

• Location: Sepang, Malaysia

• Department: Information Security

• Entity: MOVE Travel Sdn Bhd

• Status (Full time/part time/contract): Full time

Job Description:

The Analyst of Strategy & Architecture will lead the development and execution of the enterprises cybersecurity strategy, ensuring alignment with business objectives and regulatory requirements. This role is responsible for designing and overseeing the implementation of a comprehensive cybersecurity architecture that effectively mitigates risk, protects critical assets, and ensures the resilience of the organizations information systems.

Key Responsibilities:

Cybersecurity Architecture:

• Identify the design and evolution of the enterprise cybersecurity architecture, including network security, application security, identity management, and cloud security.

• Define and maintain security architecture frameworks and standards that guide secure development and operational processes.

• Evaluate emerging technologies and security solutions to ensure the organizations architecture is future-proof and scalable.

Risk Management:

• Identify and assess cybersecurity risks to the organization, developing strategies to mitigate them effectively.

• Ensure compliance with relevant regulations, standards, and frameworks (e.g., ISO 27001, NIST, GDPR).

• Oversee the development and implementation of security controls and best practices across the enterprise.

Stakeholder Engagement:

• Engage with business units to understand their needs and ensure cybersecurity strategies and architectures support their objectives.

• Foster relationships with external partners, regulators, and industry peers to stay abreast of cybersecurity trends and share best practices.

Incident Response & Recovery:

• Collaborate with the Incident Response team to ensure that architecture and strategy effectively support detection, response, and recovery efforts.

• Lead post-incident analysis to identify lessons learned and drive continuous improvement in security architecture.

Implementation & Delivery:

• Oversee the end-to-end execution of the project, from deployment and integration to final user acceptance testing.

• Act as the primary technical point of contact for stakeholders, providing regular progress updates and managing expectations.

• Manage project resources, mitigate risks, and maintain clear communication channels with all stakeholders to ensure project milestones are met on schedule and within budget.

• Develop and deliver comprehensive documentation, including user guides, training materials, and technical specifications, to facilitate user adoption and seamless handover to support teams.

• Establish post-implementation support protocols and conduct performance reviews to ensure the solution delivers the expected value and meets business objectives.

Qualifications:

• Education: Bachelors or Master’s degree in Cybersecurity, Information Technology, Computer Science, or related field. Relevant certifications (e.g., CISSP, CISM, TOGAF) are highly desirable.

• Experience: 7+ years of experience in cybersecurity, with at least 3-5 years in a senior leadership role focused on cybersecurity strategy and architecture.

• Expertise: In-depth knowledge of cybersecurity frameworks, standards, and best practices. Experience with cloud security, network security, and secure software development.

• Leadership: Proven track record of leading cross-functional teams and driving large-scale cybersecurity initiatives.

• Communication: Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels of the organization.

• Analytical Skills: Strong analytical and problem-solving skills, with the ability to assess complex cybersecurity challenges and devise effective solutions.

We are all different - one talent to another - that is how we rely on our differences. At AirAsia, you will be treated fairly and given all chances to be the best. We committed to creating a diverse work environment and are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.