Cyber Security Engineer

Bjak

1d ago 0 views 0 applications
Malaysia Onsite
Competitive
Full-time
Security Engineer

Job Description

Ready to Secure the Future of Fintech in Southeast Asia?

At BJAK, we're not just another fintech company. We're revolutionizing financial services across Southeast Asia, from lightning-fast insurance quotes to seamless payments and automated claims. With millions of users and rapid growth, security isn't an afterthought – it's the bedrock of our operation.

We're searching for a passionate and driven Cybersecurity Engineer to take ownership of protecting our platforms, devices, and data. This isn't a role for the faint of heart. We need a builder, a monitor, a responder, and a strategist – someone who can proactively harden our systems while anticipating the next wave of threats.

This is a high-impact, high-visibility position reporting directly to senior leadership. If you thrive in fast-paced environments, embrace autonomy, and are energized by tackling complex security challenges, you'll find your home at BJAK.

Your Mission, Should You Choose to Accept It:
Be the Shield: Own end-to-end cybersecurity across our entire ecosystem: infrastructure, cloud, endpoints, and applications.
Hunt and Neutralize Threats: Monitor SOC alerts, analyze threat intelligence, and orchestrate rapid incident response from detection to resolution.
Fortify Our Defenses: Implement, configure, and manage a suite of security tools, including EDRs, firewalls, antivirus, and intrusion detection systems.
Proactive Hardening: Conduct vulnerability assessments and penetration testing, prioritizing risks and implementing preventative fixes.
Embed Security into Everything: Champion DevSecOps practices across the software development lifecycle, ensuring security is baked in from the start.
Secure the Cloud Kingdom: Evaluate and secure our cloud infrastructure (GCP, AWS, or Azure), focusing on identity and access controls, encryption, and audit logging.
Champion Compliance: Lead security audits and support regulatory compliance initiatives, including ISO 27001, NIST, and other relevant frameworks.
Collaborate and Educate: Partner with cross-functional teams (DevOps, Compliance, Legal, Product) to cultivate a security-first culture across the company.
Train the Troops: Conduct security awareness training and simulate real-world attack scenarios to enhance employee preparedness.
Own the Risk Landscape: Maintain the security risk register and continuously improve controls based on emerging threats.
Be the Security Ambassador: Interface with external auditors, regulators, and third-party vendors to demonstrate our security posture and resolve findings efficiently.

Are You the Right Kind of Hacker?

This role demands more than just technical skills. We're looking for someone who:
Thinks Like an Owner: Takes full responsibility and accountability, driving action without excuses.
Stays Cool Under Fire: Remains calm and decisive during incidents, effectively resolving issues under pressure.
Is a Self-Starter: Proactively identifies and tackles challenges without waiting for direction.
Adapts and Overcomes: Comfortably juggles multiple priorities and adapts to shifting demands.
Cares Deeply About Security: Is genuinely passionate about protecting users, systems, and business integrity.
Is a Continuous Improver: Takes the initiative to improve broken processes, even outside their direct responsibilities.
Prioritizes Impact: Has a strong bias for speed, clarity, and delivering tangible results.
Values Teamwork: Wants to be part of a high-performing team where their contributions have a direct impact on millions.

What You'll Bring to the Table:
Bachelor's degree in Computer Science, Cybersecurity, or a related technical field.
3+ years of hands-on experience in cybersecurity or information security roles, ideally in high-growth or regulated environments.
Deep understanding of cybersecurity tools and practices, including EDR, firewalls, SIEM, IDS/IPS, and antivirus platforms.
Proven ability to handle real-world incidents, perform root cause analysis, and implement effective controls.
Experience with cloud security (GCP, AWS, Azure) and a working knowledge of IAM, encryption, and cloud-native threat modeling.
Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, HIPAA, local data protection laws).
Solid understanding of DevSecOps, secure software development, and CI/CD pipeline security.
Excellent communication skills, with the ability to clearly articulate security concepts across different functions.
Immediate availability is a plus!

Bonus Points:
Cybersecurity certifications such as CISSP, CEH, OSCP, or equivalent.
Experience in fintech, banking, or other high-risk digital platform environments.
Experience interacting directly with auditors, regulators, or compliance committees.
Familiarity with ethical hacking, red teaming, or adversary simulation techniques.
Scripting or automation skills to streamline security operations at scale.

Life at BJAK: High-Speed, High-Trust

Forget corporate bureaucracy. We're a fast-moving startup where impact matters more than titles. We value independent thinking, rapid action, and unwavering ownership. At BJAK, security is a leadership imperative. If you want a real voice in shaping our security strategy, you've come to the right place. We prioritize clarity, urgency, and results over red tape.

Perks of the Job:
Competitive salary and performance-based bonuses.
Flexible hybrid working model with high autonomy and trust.
Direct access to senior leadership and exposure to strategic decision-making.
A high-impact role where your work protects millions of users from day one.
The opportunity to build and shape BJAK's security architecture from the ground up.
Fast-tracked career growth in a mission-driven fintech company powered by cutting-edge technology.

About BJAK: Securing Southeast Asia's Financial Future

BJAK is Southeast Asia's leading digital insurance platform, headquartered in Malaysia with operations in Thailand, Taiwan, and Japan. We empower millions of users to access transparent and affordable financial protection through Bjak.com.

We're simplifying complex financial services through automation, AI, and secure digital infrastructure, making finance faster, smarter, and safer for everyone.

If you're ready to lead cybersecurity at a startup that demands speed, integrity, and ownership, we're eager to hear from you. Apply now and let's build a more secure future together!