Job Description

The Tech Security Engineer will be responsible for implementing, maintaining, and continuously improving security measures to protect our organization's digital assets and information systems. This individual will play a vital role in identifying and mitigating security risks, conducting security assessments, and ensuring compliance with industry standards and best practices. 


This role will specialize in Data Loss Prevention, User Access Management and Privilege Access Management.


Data Loss Prevention (DLP)

• Design, implement, and manage DLP solutions to prevent unauthorized disclosure or loss of sensitive data.

• Develop and enforce policies for data handling and classification.

• Monitor and analyze network traffic for potential data security incidents.

• Collaborate with cross-functional teams to integrate DLP measures seamlessly into existing systems.


User Access Management (UAM)

• Oversee the provisioning and de-provisioning of user accounts and access rights.

• Implement and enforce access control policies in accordance with security best practices.

• Conduct regular access reviews and audits to ensure compliance with security policies.

• Provide user education and support on access management processes.


Privilege Access Management (PAM)

• Implement and manage PAM solutions to control and monitor privileged access to critical systems.

• Define and enforce policies for privileged account usage and access.

• Conduct regular privileged access reviews and audits.

• Work closely with IT and system administrators to secure and manage privileged accounts.


Security Architecture

• Collaborate with the security architecture team to integrate DLP, PAM, and UAM solutions into the overall security framework.


Incident Response

• Respond to and investigate security incidents related to data breaches, unauthorized access, or policy violations.


Policy Development

• Contribute to the development and enhancement of security policies and procedures related to DLP, PAM, and UAM.


• Work closely with IT teams, system administrators, and other stakeholders to implement and maintain security measures.

Security Policy and Compliance: 


● Develop and enforce security policies, standards, and procedures to ensure compliance with data protection laws and regulations.

● Develop and implement technology security incident and event management policies, procedures and best practices to ensure the timely and effective response to security incidents and events

● Collaborate with internal teams to implement security controls and best practices. 

● Ensure compliance with relevant security and data protection regulations, such as GDPR, CCPA and HIPAA


Security Awareness and Training: 

● Conduct security awareness training for employees to promote a culture of cybersecurity. 

• Provide training and awareness programs to educate employees on security best practices and compliance with access management policies.



• Maintain accurate and up-to-date documentation of security configurations, incidents, and response activities.


Professional certifications such as CISSP, CISM, or CISA are highly desirable

Proven experience (> 5 years) in technology security roles, with a focus on DLP, UAM, and PAM.

In-depth knowledge of security protocols, encryption techniques, and access control measures.

Familiarity with industry standards and best practices in data security.

Strong analytical and problem-solving skills.

Excellent communication and collaboration abilities.

Go Beyond Banking with CIMB Bank

Download the all-new CIMB Bank PH app and enjoy an enhanced digital banking experience that's fast, easy, and more convenient than ever!