job description
Are you a security professional looking to bridge the gap between IT and Industrial Control Systems? Ener Tech Solutions Sdn. Bhd. is seeking a dedicated IT/OT Cybersecurity Engineer to join our growing team in Shah Alam. In this role, you will play a critical part in safeguarding our critical infrastructure against emerging threats while ensuring operational continuity.
We pride ourselves on fostering a collaborative environment where innovation is encouraged. As part of our team, you will receive ongoing professional development and specialized training to stay at the cutting edge of cybersecurity. We offer a competitive compensation package including a 13-month salary structure and a comprehensive suite of benefits designed to support your work-life balance.
If you are passionate about network security, industrial automation, and building robust defense architectures, we invite you to apply and help us protect the technologies that drive our industry forward.
Responsibility
- Design, implement, and monitor security controls across both IT and OT/ICS environments.
- Conduct regular vulnerability assessments and penetration testing on industrial networks.
- Collaborate with engineering teams to ensure security is integrated into the operational lifecycle.
- Respond to and investigate security incidents within the production environment, providing root cause analysis.
- Manage and maintain firewalls, IDS/IPS, and endpoint security solutions tailored for industrial systems.
- Develop and update cybersecurity policies, procedures, and incident response plans.
- Stay abreast of the latest cybersecurity threats, trends, and regulatory compliance requirements.
Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity, Electrical Engineering, or a related technical field.
- Minimum 2-3 years of experience in an IT or OT/ICS security role.
- Solid understanding of industrial communication protocols (e.g., Modbus, OPC UA, DNP3, PROFINET).
- Knowledge of security frameworks such as NIST CSF, IEC 62443, or ISO 27001.
- Proficiency with network security tools and SIEM platforms.
- Professional certifications such as GICSP, GRID, CISSP, or CompTIA Security+ are highly regarded.
- Strong analytical mindset with the ability to troubleshoot complex security issues in high-uptime environments.