If you are looking to excel and make a difference, take a closer look at us…
The Opportunity: We are seeking a highly motivated and skilled Security Automation Specialist to join our growing security management team. In this pivotal role, you will be instrumental in enhancing our security posture by automating critical identity workflows and integrating security components across our infrastructure. Your work will directly contribute to improving operational efficiency, reducing manual effort, and strengthening our overall security resilience. If you are passionate about security, automation, and building robust, scalable solutions, we encourage you to apply.
Key Responsibilities:
Identity Workflow Automation: Design, develop, and implement automated solutions for identity and access management (IAM) processes, including user provisioning/de-provisioning, access reviews, role-based access control (RBAC), and privileged access management (PAM).
Security Tool Integration: Integrate various security tools and platforms (e.g., SIEM, vulnerability scanners, endpoint detection and response (EDR) to create seamless, automated security pipelines.
Scripting and Development: Write clean, efficient, and well-documented code/scripts (e.g., Python, PowerShell, Go, JavaScript) to automate repetitive security tasks and build custom integrations.
API Utilization: Leverage APIs from security products and enterprise systems to facilitate data exchange and trigger automated actions.
Orchestration & Workflow Management: Utilize orchestration tools (e.g., Ansible, Terraform, Kubernetes, specialized security orchestration automation and response (SOAR) platforms) to streamline security operations.
Monitoring & Alerting: Implement automated monitoring and alerting mechanisms for security events related to identity and access, ensuring timely detection and response.
Incident Response Automation: Develop and automate playbooks for common security incidents, reducing mean time to detection (MTTD) and mean time to respond (MTTR).
Documentation: Create and maintain comprehensive documentation for automated security processes, configurations, and integrations.
Continuous Improvement: Proactively identify opportunities for automation to enhance security posture, improve efficiency, and reduce operational overhead.
Collaboration: Work closely with security engineers, developers, and operations teams to understand requirements, propose solutions, and implement automated security controls.
Required Skills & Qualifications:
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
Proven experience (7+ years) in security automation, DevSecOps, or a similar role with a strong focus on automation.
Strong proficiency in at least one scripting/programming language (e.g., Python, PowerShell, Go, JavaScript).
Experience with identity and access management (IAM) concepts and technologies (e.g., Active Directory, Azure AD, Okta, SailPoint, CyberArk).
Familiarity with security frameworks and best practices (e.g., NIST, ISO 27001, CIS Benchmarks).
Experience with APIs and integrating disparate systems.
Excellent problem-solving skills and a strong analytical mindset.
Ability to work independently and as part of a collaborative team.
Strong communication and interpersonal skills.
Bonus Points (Nice-to-Haves):
Experience with SOAR platforms (e.g., Splunk SOAR, Palo Alto Networks XSOAR).
Experience with infrastructure as code (IaC) tools (e.g., Terraform, CloudFormation, ARM Templates).
Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes).
Experience with log management and SIEM solutions (e.g., Splunk, Elastic Stack, Microsoft Sentinel).
Contributions to open-source security projects.
What’s next:
Once you’ve applied online, our team will carefully review your application. Due to a high volume of applications, we appreciate your patience to allow for a fair and timely review process.
Should you be shortlisted for the role, we will send you an invitation via email for an interview. You can also check on your application status by logging into your candidate account.
About Hong Leong Bank
We are a leading financial institution in Malaysia backed by a century of entrepreneurial heritage. Providing comprehensive financial services guided by a Digital-at-the-Core ethos has earned us industry recognition and accolades for our innovative approach in making banking simpler and more effortless for our customers. Our digital and physical offerings span across a vast nationwide network in Malaysia, strengthened with an expanding regional presence in Singapore, Hong Kong, Vietnam, Cambodia, and China.
We seek to strike a balance between diversity, inclusion and merit to achieve our mission of infusing diversity in thinking and skillsets into our organisation. Candidates are assessed based on merit and potential, in line with our mission to attract and recruit the best talent available. Expanding on our “Digital at the Core” ethos, we are progressively digitising the employee journey and experience to provide a strong foundation for our people to drive life-long learning, achieve their career aspirations and grow talent from within our organisation.
Realise your full potential at Hong Leong Bank by applying now.