Security System Engineer at CompanionVille in Kuala Lumpur, Malaysia (full-time)

Role Overview

We are looking for a Security System Engineer to design, implement, and maintain security controls across the organisation’s infrastructure. You will work with EDR, SIEM, network security, and cloud security tools, and participate in incident response, threat hunting, and vulnerability management. This is a hands‑on role requiring strong technical expertise and collaboration with IT, DevOps, and engineering teams.

Key Responsibilities

• • Ensure proper deployment and maintenance of security controls across the infrastructure
• • Manage and optimise EDR, SIEM, WAF, IDS/IPS, and endpoint security configurations
• • Monitor security events and ensure reliable telemetry collection across systems
• • Support endpoint hardening and secure baseline configurations
• • Participate in incident response activities and forensic investigations
• • Conduct threat hunting and proactive security analysis
• • Support vulnerability management and remediation tracking
• • Participate in risk assessments and security reviews
• • Develop and maintain Information Security policies, procedures, and security standards
• • Ensure security controls align with company requirements and industry standards
• • Participate in security audits and remediation activities
• • Work closely with IT, DevOps, and Engineering teams
• • Support continuous improvement of the company’s security posture
• • Participate in post‑incident analysis and corrective action planning

Requirements

• • Minimum 5 years of experience in Cybersecurity
• • Hands‑on experience with EDR solutions (SentinelOne, CrowdStrike, Microsoft Defender for Endpoint, or similar)
• • Experience working with Microsoft Azure and Microsoft Entra ID
• • Experience working with SIEM solutions (Splunk, ELK, Microsoft Sentinel, Wazuh, or similar)
• • Experience working with WAF, IDS/IPS, and network security solutions
• • Understanding of endpoint hardening principles and baseline configurations (CIS Benchmarks or similar)
• • Experience with patch management processes and compliance tracking
• • Hands‑on experience in incident investigation
• • Understanding of Incident Response processes and basic forensic practices

Understanding of the modern threat landscape, including malware, phishing, privilege escalation, persistence techniques, lateral movement, and web‑based attacks

• • Experience conducting risk assessments and security gap analysis
• • Experience developing, maintaining, or supporting Information Security policies and procedures
• • Administrative‑level experience with Windows and macOS
• • Strong understanding of security best practices and defence‑in‑depth principles
• • Must be based in Kuala Lumpur

• • Will be a Plus (Nice to Have)

• • Experience with MDM solutions (Intune, Jamf, ManageEngine, or similar)
• • Experience participating in threat hunting activities
• • Experience with DevSecOps practices and security integration within CI/CD pipelines
• • Experience with Vulnerability Management processes and remediation tracking
• • Experience with vulnerability scanning and security tooling integration
• • Basic scripting skills (Python, Bash, or PowerShell) for automation
• • Understanding of security standards and frameworks (ISO 27001, PCI DSS, SOC 2, CIS Controls)
• • Cybersecurity‑related certifications

What the company offers

• • Hybrid work model (Kuala Lumpur)
• • Competitive salary (negotiable based on experience)
• • Opportunity to work in a globally licensed, multi‑jurisdictional brokerage