AVP, Server & Endpoint Protection Engineering

About The Position

Requirements

• Overall experience 8 to 12 years of experience
• In-depth knowledge of system protection and security incident response
• Hands-on experience in both on-premises and SaaS Endpoint Protection Platform (EPP) and Endpoint Detection & Response (EDR) solutions (e.g., Trend Deep Security, Trend Vision One, Symantec SEP, Trellix ENS, CrowdStrike, Cortex XDR, Sentinel One, etc) with the ability to design, size and operationalize solution across large enterprise environment
• Proven experience leading relevant security programs in large organizations
• Strong understanding of regulatory requirements such as MAS TRM, PCI DSS, etc.
• Experience with security monitoring and data analysis using Splunk
• Familiarity with ITIL processes (especially Change, Incident and Service Management)
• Familiarity with ServiceNow, Jira, or other ITSM platforms
• Scripting skills (e.g., Python, Bash) for operational or automation efficiency will be advantageous
• Excellent communication, leadership, and collaboration skills
• Process aware mindset
• Strong analytical and problem-solving skills
• Effective time management and organizational skills
• Team player, including ability to establish and maintain effective working relationships within and across the organization
• Degree in Engineering / Computer Science / IT / Cyber Security from a recognized education institution

Nice To Haves

• Professional security related qualifications (e.g., CISSP, CISA, CISM, ITIL, etc.) will be favorable although not mandatory

Responsibilities

• Develop and maintain the server and endpoint security roadmaps and plan for future enhancements and capabilities as party of continuous improvement process
• Manage product lifecycle for the Group Information Security (GIS) technical capabilities over server and endpoint security solutions which include but is not limited to anti-virus, anti-malware, firewalls, intrusion detection/prevention systems, and other relevant technologies
• Provide production support and monitoring to ensure control efficacy and solution reliability & stability
• Product research and define requirements for new projects, perform product evaluation and technical Proof of Concept
• Support the development of server and endpoint security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices
• Provide support for all audit and regulatory requests
• Provide guidance and advisory for technical security questions that are operational in nature
• Review and grant exceptions to security policy settings that have operational implications for valid business activities (e.g. endpoint policy exception required for application functionality)