Executive - Cybersecurity
Level: Experienced
BDO in Malaysia is part of the leading global professional services network, BDO International, providing audit, tax, advisory, business and outsourcing services to clients across diverse industries. With over 60 years of experience, we are supported by more than 1,200 professionals — including over 200 Partners and Directors — across offices in Malaysia, Brunei, Cambodia, Lao PDR, Myanmar and Vietnam.
At BDO, we shape what matters:
We grow together, to reach higher.
We collaborate, show up for one another, and build meaningful relationships — growing our careers in a workplace where we can thrive and belong.
We shape solutions, to go further.
We take ownership of our careers, stay curious, and are brave to share new ideas and shape how things are done.
We build trust, to lead purposefully.
Trust and integrity are the foundation of everything we do. We hold ourselves to the highest standards, leading with purpose while delivering quality outcomes.
Whether you’re starting or advancing your career, you won’t do it alone. From building meaningful careers for our people to shaping solutions for our clients, at BDO, we do it together. Come and shape what matters with us.
Overview
As an Executive, you will support the team in delivering cybersecurity governance, risk, compliance, and advisory engagements. You will gain hands-on experience in cybersecurity frameworks, regulatory compliance, risk assessments, policy development, and reporting, building a strong foundation in cybersecurity, IT governance, and regulatory advisory
Key Responsibilities
Education and professional skills / knowledge
Experience & Education
Other skills
Kindly submit your application together with your resume, along with copies of your latest academic and professional transcripts.
Submit Application
At BDO, we shape what matters:
We grow together, to reach higher.
We collaborate, show up for one another, and build meaningful relationships — growing our careers in a workplace where we can thrive and belong.
We shape solutions, to go further.
We take ownership of our careers, stay curious, and are brave to share new ideas and shape how things are done.
We build trust, to lead purposefully.
Trust and integrity are the foundation of everything we do. We hold ourselves to the highest standards, leading with purpose while delivering quality outcomes.
Whether you’re starting or advancing your career, you won’t do it alone. From building meaningful careers for our people to shaping solutions for our clients, at BDO, we do it together. Come and shape what matters with us.
Overview
As an Executive, you will support the team in delivering cybersecurity governance, risk, compliance, and advisory engagements. You will gain hands-on experience in cybersecurity frameworks, regulatory compliance, risk assessments, policy development, and reporting, building a strong foundation in cybersecurity, IT governance, and regulatory advisory
Key Responsibilities
- Assist in implementing and reviewing cybersecurity frameworks such as ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other recognised industry standards
- Support the development and enhancement of cybersecurity policies, procedures, governance structures, and related documentation
- Support cybersecurity risk assessments, IT general controls reviews, cybersecurity audits, gap assessments, and remediation tracking
- Be involved in regulatory compliance engagements involving Malaysian cybersecurity and technology risk requirements such as BNM RMiT, GTRM, NACSA directives, PDPA Malaysia, and other relevant regulations
- Support regulatory readiness assessments, compliance reviews, audits, and preparation of required documentation
- Assist in third-party and vendor risk assessments, including vendor due diligence, risk documentation, and remediation tracking
- Support the development of cybersecurity awareness materials, training content, and related communication initiatives
- Assist in tracking cybersecurity risks, key risk indicators, key performance indicators, audit findings, and remediation progress
- Prepare documentation, working papers, reports, and presentation materials for clients and internal stakeholders
- Engage with IT, Risk, Compliance, Security, and business teams to support interviews, workshops, meetings, and project deliverables
Education and professional skills / knowledge
Experience & Education
- A recognised degree in Cyber Security, Information Technology, Computer Science, or a related field with at least a Second Class Upper or equivalent
- Minimum of one year of relevant working experience; however, fresh graduates with strong interest in technology advisory are also encouraged to apply
Other skills
- Basic understanding of cyber security, IT controls, IT governance, technology risk, or regulatory compliance concepts
- Familiarity with frameworks or standards such as ISO 27001, NIST Cybersecurity Framework, CIS Controls, COBIT, BNM RMiT, SC TRMG, NACSA requirements, PDPA, or VAPT will be an added advantage
- Certifications such as CompTIA Security+, ISC2 Certified in Cybersecurity, ISO 27001 Foundation, or equivalent will be an added advantage
- Strong analytical, problem-solving, communication, and documentation skills
- Detail-oriented, eager to learn, and able to work independently as well as in a team-based environment
- Proficient in Microsoft Office tools such as Excel, Word, and PowerPoint
Kindly submit your application together with your resume, along with copies of your latest academic and professional transcripts.
Submit Application