Cyber-Security Lead/Manager

GetLinks partner

Selangor, Malaysia

Negotiable

Job description

Remote

Responsibilities

  • Set the security strategy and direction — what to prioritize, where to invest first, and what "secure enough" means for us.
  • Own the security roadmap and build out the function and team as we grow.
  • Run and coordinate security testing across web platforms, APIs, infrastructure, and cloud.
  • Build and maintain a complete asset inventory and risk register - know what we have and what's exposed.
  • Scope and manage external penetration testing and red team vendors, and turn their findings into tracked, closed-out fixes.
  • Test business logic and platform integrity - account takeover, payment and transaction abuse, bonus abuse, and game integrity.
  • Run phishing and social engineering testing and drive security awareness across teams.
  • Set up vulnerability management, monitoring, and incident response.
  • Advise engineering on secure development and review new features for security risk.
  • Report security risk and progress directly to management in clear, business-level terms.


Requirements

  • 5+ years in cybersecurity, with strong hands-on penetration testing or security engineering experience.
  • Strong knowledge of web and API security (OWASP), network and infrastructure penetration testing, and cloud security (AWS).
  • Able to find business-logic flaws, not just run scanners.
  • Relevant experience in incident response.
  • Experience scoping and managing third-party security vendors.
  • Clear communicator — able to translate technical risk into management-level summaries.
  • High ownership mindset with strong attention to detail.
  • Communicates well in English.
  • Experience securing high-traffic consumer platforms with user accounts and online transactions is a strong plus.
  • Experience in gaming, fintech, or other real-money environments is a strong plus.

Contact us

1 - Nguyen Ta Thuy Hang (Stella)Email: [email protected]Tel: +84 96 260 46 87