Cyber Security System Engineer
Bangkok | Kuala Lumpur
- Organization: IRC - International Rescue Committee
- Location: Bangkok | Kuala Lumpur
- Grade: Mid level - Mid level
-
Occupational Groups:
- Engineering
- Information Technology and Computer Science
- Security and Safety
- Closing Date:
The International Rescue Committee (IRC) responds to the world's worst humanitarian crises, helping to restore health, safety, education, economic wellbeing, and power to people devastated by conflict and disaster. Founded in 1933 at the call of Albert Einstein, the IRC is one of the world's largest international humanitarian non-governmental organizations (INGO), at work in more than 40 countries and 29 U.S. cities helping people to survive, reclaim control of their future and strengthen their communities. A force for humanity, IRC employees deliver lasting impact by restoring safety, dignity and hope to millions. If you're a solutions-driven, passionate change-maker, come join us in positively impacting the lives of millions of people world-wide for a better future.
The Resettlement Support Center Asia (RSC Asia), funded by the US State Department Bureau of Population, Refugees, and Migration (PRM), assists persons throughout Asia seeking permanent resettlement in the United States. Responsible for a portfolio of 37 countries, RSC Asia: prepares refugee applications for the United States Refugee Admissions Program (USRAP) using START (a State Department–managed data system that supports the arrival and resettlement of refugees through technology); provides information to resettlement agencies about arriving refugees and offers cultural orientation training to refugees bound for the United States. RSC Asia is based in Bangkok, Thailand, with sub-offices in Mae Sot-Thailand, Kuala Lumpur-Malaysia and Cox’s Bazar-Bangladesh.
Job Overview/Summary:
The Cyber Security System Engineer will focus on Vulnerability Remediation and Prioritization, playing a key role in identifying and addressing security vulnerabilities across our systems. The primary responsibilities involve coordinating remediation efforts, tracking progress, and ensuring compliance with established policies, standards, and guidelines. The position will be responsible for a range of duties related to remediation efforts, configuration settings, system security scans, troubleshooting, and providing tier 3 and tier 4 technical support in a Windows-based environment.
Key Responsibilities:
•Collect, review, and consolidate vulnerability and compliance findings from various systems and platforms.
•Identify remediation actions, prioritize tasks, and establish schedules based on customer guidelines.
•Execute required actions to remediate identified vulnerabilities and track progress using workflow/tracking tools.
•Utilize automated security tools (e.g., ACAS, Active Directory GPO, SCCM, ServiceNow) to identify and address vulnerabilities.
•Coordinate and collaborate with internal teams and external stakeholders as necessary.
•Conduct self-test activities and respond to Cyber Task Orders issued by relevant agencies.
•Support Assessment & Authorization and Continuous Monitoring activities, ensuring compliance with NIST Risk Management Framework (RMF) requirements.
•Assist in developing and maintaining required documentation, including Body of Evidence (BoE).
•Ensure timely execution of Continuous Monitoring activities and update tracking tools accordingly.
•Configure and validate additional security tools and applications as needed (e.g., HBSS, Splunk, UAM)
•Support cyber vulnerabilities by conducting comprehensive assessments of information systems policies, technical/non-technical security components, and documentation.
•Perform system security scans and act as a point of contact for monitoring, troubleshooting, and problem resolution.
•Independently manage tasks with a proactive approach to achieving objectives efficiently.
•Ensure the provision of high-quality, secure, and resilient infrastructure that aligns with customer business needs.
•Conducted script verification checks, reviewed event logs, maintained documentation, and provided technical training.
•Provide tier 3 and tier 4 technical support and leadership in a complex, mission-critical Windows environment.
Key Working Relationships:
Position Reports to:Technology Information Security Coordinator
Position directly supervises: N/A Indirect reporting:N/A Other Internal and/or external contacts:
Internal: All RSC Asia SMT, RSC Asia IT Support teams, IRC HQ/Regional IT System Network
Engineering, Regional IT, and relevant global IT Teams
External:, PRM/RPC and Auditor Teams as required
Job Requirements
Education and Technical Skills:
•Bachelor’s or Master’s Degrees are preferred in IT field.
•5+ years of Cyber Security System.
•Proficiency in Server 2019 and Windows 10 environments.
•Ability to self-learn, take initiative, and thrive in a dynamic environment.
•Strong troubleshooting skills and experience in resolving technical issues.
•Knowledgeable in multiple technology areas, including operating systems, networking, and systems integration.
•Hands-on experience with Microsoft Systems Configuration Manager (SCCM and MECM), MDT, and OSD deployment methods.
•Familiarity with Service Now and remote access/application delivery technologies.
•Understanding of the accreditation process and ability to upload artifacts to A&A systems.
Preferred Skills:
•Experience with VMWare technologies such as Core VCF, NSX, AVI, Horizon Operations, and Automation.
•Knowledge of Azure, Linux administration/troubleshooting, and PowerShell scripting.
•Familiarity with deploying and managing thin clients, WSUS, and inventory management.
•Proficiency in Microsoft SQL Server and Active Directory administration.
Communication and Collaboration:
•Excellent verbal and written communication skills to interact with end users, colleagues, and management effectively.
•Ability to explain technical concepts to non-technical individuals.
Working Environment:
The position is national staff who can be based in any of our RSC Asia offices located in Thailand, Bangladesh, or Malaysia. Successful candidates will be assigned to the office with available workstations.
This position may involve both domestic and international travel to support NIST 800-53 remediation efforts across the RSC Asia region. Candidates must possess a valid passport and the ability to obtain US and other necessary visas.
Standard of Professional Conduct:The IRC and the IRC workers must adhere to the values and principles outlined in the IRC Way – our Code of Conduct. These are Integrity, Service, Accountability, and Equality.
Commitment to Gender, Equality, Diversity, and Inclusion: The IRC is committed to creating a diverse, inclusive, respectful, and safe work environment where all persons are treated fairly, with dignity and respect. The IRC expressly prohibits and will not tolerate discrimination, harassment, retaliation, or bullying of the IRC persons in any work setting. We aim to increase the representation of women, people that are from country and communities we serve, and people who identify as races and ethnicities that are under-represented in global power structures.
Commitment to Gender, Equality, Diversity, and Inclusion: The IRC is committed to creating a diverse, inclusive, respectful, and safe work environment where all persons are treated fairly, with dignity and respect. The IRC expressly prohibits and will not tolerate discrimination, harassment, retaliation, or bullying of the IRC persons in any work setting. We aim to increase the representation of women, people that are from country and communities we serve, and people who identify as races and ethnicities that are under-represented in global power structures.
We do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.
Before applying, please make sure that you have read the requirements for the position and that you qualify.
Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.
Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.