Senior Analyst (Cybersecurity)

About PETROS:

At PETROS, we aim to achieve sustainable development for Sarawak and the nation through responsible resource management. We embarked on this journey with a purpose: Harnessing Resources for the Sustainable Progress of Sarawak and Beyond. Through innovation, collaboration and a forward-thinking approach, PETROS aims to pioneer solutions that pave the way for a more sustainable and equitable energy future.

Position Overview:

The Senior Cyber Security Analyst role focuses on maintaining and safeguarding PETROS's data, digital infrastructure, and computing systems (on-premises and cloud). The Senior Analyst (Cybersecurity) role will analyse security events and threats, respond to incidents, and implement security measures to enhance and ensure the organisation's cyber security posture.

Key Responsibilities:

• Develop procedures, maintain guidelines, and enforce cyber security policies and controls, to ensure compliance with industry standards and regulations.
• Monitor and analyse security alerts and events, identifying potential threats and vulnerabilities.
• Investigate, respond to, and perform root cause analysis (RCA) on security incidents such as breaches, malware infections, and unauthorised access attempts, while recommending corrective actions to prevent future occurrences.
• Conduct vulnerability assessment, including threat hunting, to proactively identify and mitigate risks.
• Implement and manage security tools, such as firewalls, Intrusion Detection/Prevention Systems (IDS/IPS), and antivirus software, to strengthen the organisation's defenses.
• Conduct security awareness training for employees, to promote the best practices and strengthen the organisation's first line of defense.
• Maintain and update the knowledge library on emerging cyber security threats and trends, to ensure the team remains current with the threat landscape.
• Collaborate with other Digital portfolios as part of cross-functional team and service provider, to ensure a holistic approach for cybersecurity solutioning.

Qualifications & Experience:

• Bachelor’s degree in Cyber Security, Information Technology, Computer Science, Engineering, or a related field.
• Minimum of 7 years of relevant experience in cyber security, network engineering, technology risk management, technology audit, or a related area.
• Strong understanding of cyber security governance, standards and frameworks such as ISO/IEC 27001, NIST, Cyber Security Act 2024.
• Proficiency in cyber risk assessment methodologies and tools.
• Relevant experience with network & system engineering, security technologies, including firewalls, Intrusion Detection/Protection Systems (IDS/IPS), and Security Information Event Management (SIEM).
• Excellent problem-solving skills and the ability to manage complex IT and/or cybersecurity incidents.
• Having cyber security certifications such as CASP+, CISSP, CISA, CISM, CRISC or equivalent is added advantage.
• Having technical, system and network certifications such as RHCP, CCNP, Microsoft Certified Cybersecurity Architect Expert or equivalent is an added advantage.

 What We Offer:

• A dynamic and inclusive work environment that fosters growth and innovation.
• Competitive compensation and benefits package.
• Opportunities for professional development and career advancement within a global organization.
• The chance to be part of transformative projects that impact Sarawak and beyond.

Application Deadline: 31 July 2025