Job Description
Our client, one of Asia-Pacific’s leading organizations is looking for: IT Security / Cybersecurity Engineer Responsibilities: Monitor and triage findings surfaced by Attack Surface Management (ASM) and Vulnerability Management tools Assess each finding for validity, severity, and exploitability Distinguish genuine exposures from false positives and contextualise findings against our asset inventory Work with system owners to follow up on outstanding findings Track remediation progress and ensure findings are resolved in a timely manner Manage exceptions and risk acceptance where remediation is not immediately feasible Communicate clearly with non-technical stakeholders, translating technical findings into actionable guidance Consolidate vulnerability data and remediation metrics for reporting Contribute to the refinement of ASM and vulnerability management processes, tooling configurations, and escalation playbooks over time Support the development and maintenance of vulnerability management policies, standards, and procedures in alignment with industry best practices Requirements: Degree in Computer Science, Engineering, Information Security or equivalent; Professional certifications GWEB, OSCP, CRISC, CISA or equivalent preferred Preferably 5 years of experience in a relevant cybersecurity function, such as vulnerability management, attack surface management, security operations, or IT risk Strong understanding of cybersecurity concepts, particularly around vulnerability management, patch management, common vulnerability scoring frameworks (eg CVSS), and external-facing attack surface risks Familiarity with ASM or vulnerability management tools (such as Tenable, Qualys, Censys, or similar) Proficiency in programming languages such as Python will be advantageous -------------------------------------------------------------------------------------------------------- Interested applicants can also email CV at harry@nsearchglobal.com (for faster processing, please st
