Cybersecurity Analyst

About PETROS:

At PETROS, we aim to achieve sustainable development for Sarawak and the nation through responsible resource management. We embarked on this journey with a purpose: Harnessing Resources for the Sustainable Progress of Sarawak and Beyond. Through innovation, collaboration and a forward-thinking approach, PETROS aims to pioneer solutions that pave the way for a more sustainable and equitable energy future.

Position Overview:

We are seeking an experienced Cybersecurity Analyst to join our Digital team with primary focus on maintaining and safeguarding of the organization’s Data, Digital infrastructure, edge and cloud computing systems.

Key Responsibilities:

• Develop procedures, guidelines, maintain and enforce cybersecurity policies and controls, ensuring compliance with industry standards and regulations.
• Monitor and analyse security alerts and events, identifying potential threats and vulnerabilities.
• Investigate, respond to, and perform root cause analysis on security incidents i.e. breaches, malware infections, and unauthorized access attempts, while recommending corrective actions to prevent future occurrences.
• Conduct vulnerability assessment, including threat hunting.
• Implement and manage security tools, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus software.
• Conduct security awareness training for employees to promote best practices and strengthen the organisation's first line of defence.
• Maintaining and updating of knowledge library on emerging cybersecurity threats and trends.
• Present security reports to management, highlighting key findings, countermeasures, and recommendations.
• Support the development and implementation of disaster recovery and business continuity plans.
• Collaborate with other Digital portfolios as part of cross-functional team and service provider in ensuring a holistic approach for cybersecurity solutioning.

Qualifications & Experience:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
• Minimum of three (3) years of relevant experience in cybersecurity, technology risk management, technology audit, or a related area.
• Having cybersecurity certifications such as CISSP, CISA, CISM, CRISC, or equivalent is highly preferable.
• Having technical, system and network certifications such as RHCP, CCNP, Microsoft Certified Cybersecurity Architect Expert, etc. is an added advantage.
• Strong understanding of cybersecurity standards and frameworks (e.g., ISO/IEC 27001, NIST, SANS).
• Proficiency in Cyber risk assessment methodologies and tools.
• Relevant experience with security technologies, including firewalls, IDS/IPS, SIEM
• Excellent problem-solving skills and the ability to manage complex IT and/or cybersecurity incidents.

What We Offer:

• A dynamic and inclusive work environment that fosters growth and innovation.
• Competitive compensation and benefits package, including healthcare, retirement plans, paid leave etc.
• Opportunities for professional development and career advancement within a global organization.
• The chance to be part of transformative projects that impact Sarawak and beyond.

Application Deadline: 15 April 2025