IT Specialist - Security & Compliance

3-5 years
10 days ago
Job Description


  • Ability to execute any information security related matters as being assigned by the management of Information Technology as per business operation required.
  • Daily network and data security operation routine checks, file permission audit, user account creation, AD security groups creation and modification with strict adherence to IT Policy and SOPs.
  • Front line defense of protecting information from unauthorized access and violations.
  • Monitoring and Auditing systems for abnormal activity, and executing corrective actions.
  • Ability to assist and perform daily IT security operation and other business critical operation requirements.
  • Administration of various solutions required for Technology Risk Management, Information Security Governance, Security Monitoring, Patch Management, Access Control, Data Loss Prevention, and other IT Security application programs.
  • Ability to perform, deliver the enforcement of access control and maintain security policies, procedures and standards that describe practical, risk-based mechanisms to maintain the confidentiality, integrity and availability of information systems and data.
  • Strong character of Good Ethics, which can be trusted with sensitive confidential electronic data information with strict adherence to IT confidentiality policy agreement.
  • Ability to maintain security and governance solutions to monitor the efficiency and effectiveness of security operations, controls and infrastructure.
  • Ability to work with all levels of professionalism, fostering relationships with business personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technology levels.
  • And all others IT Security and Compliance Related Task.


Educational Requirement :

  • Bachelor's Degree or equivalent relevant qualifications.
  • An information security or other similar technical certification such as, CEH, CompTIA Security+ or CCNA Security is desirable.

Experience Requirements :

  • 5+ years relevant experiences in a large enterprise environment. (Preferably in Casino Resort-Hotel Entertainment industry).
  • Requires in depth experience and knowledge of enterprise IT security technologies.
  • Possess knowledge and experience in managing compliance and/or security organization, including planning and executing security policies and standards development.
  • 3+ years in information security preferred to include administration in least 6 of the following disciplines:
  • Execute Data Security, Privileges Access Management and Account Life-Cycle Process.
  • 2FA administration management, access provisioning, removal and technical support.
  • Performs daily IT Security threat prevention operations, vulnerability assessment, monitoring, executing data security controls and policy enforcement.
  • Anti-Malware administration and security analytics operation, monitoring, malware blocking applying control and countermeasures, filedevice trajectory investigation, control and mitigation containment.
  • Administration of Spam Firewall Email Security Systems, control, blocking, monitoring and investigation of reported malicious emails.
  • Investigate, verify and mitigate malicious URLWebsites.
  • Monitoring of vulnerability points, analyze, validate and assess potential data security risks.
  • Document and preserve data historical record evidences for future requirement.
  • Experienced in Vulnerability Management, Identification and Containment.
  • Experienced in Security Information and Event Management and monitoring (SIEM).
  • Experienced in Intrusion Detection and Prevention Systems among others.

Leadership Skills :

  • Must have excellent analytical skills, have the ability to multi-task and have solid project management skills.
  • Self-lead with minimal supervisorial needs.
  • Project Management skills is a plus.

Technical Skills :

  • Ability to understand the relationship between business processes, priorities, risk and their underlying technologies and security risks.
  • Strong sense of information security in identifying risks and control-minded.
  • Possess wide exposure in information security solutions with practical implementation experience onto business units.
  • Ability to adopt with a fast pace and growing company.

Other Qualifications :

  • Proficiency in both spoken and written English is a must.
  • The ability to build strong relationships and establish interpersonal connections at all levels of the organization; treat others with respect, and conduct business with professionalism and tact.





Identification and Containment
Security Information and Event Management
Account Life-Cycle Process
Anti-Malware administration
2FA administration management
CompTIA Security+
Intrusion Detection and Prevention Systems
Spam Firewall Email Security Systems
Security analytics operation
Privileges Access Management
Job Source: