Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia
- Performed Cyber Security Third Party Risk Assurance (CS TPRA) assessments across the PETRONAS Group, covering both legacy contracts and procurement tendering processes, to ensure vendor compliance with industry-leading cyber security standards. - Delivered trainings, awareness sessions, and guidance to stakeholders to strengthen understanding and execution of assurance processes. - Managed the shared mailbox, addressing all incoming queries, communications, and coordination efficiently. - Liaised with Third Parties to gather and review evidence based on their service engagements. - Engaged and supported PETRONAS business units in completing Third Party Risk Assessments for applicable contracts.
Identity and Access Management (IAM) Team | PETRONAS - Portal Maintenance: Supported the maintenance and semi-automation of the IAM portal for existing applications to reduce risks related to unauthorized user access. - Documentation: Developed and managed documentation, including Excel-based data reports and presentation materials for Business Application Assurance Review (BAAR). - Information Management: Organized and tracked communications within the shared mailbox for Service Account and Password Reset activities, as well as BAAR-related tasks. - Reporting: Prepared and presented BAAR reports to the Business Cyber Security team during weekly review meetings. Design, Validation, and Third Party Assurance Team | PETRONAS - Third Party Assurance: Supported the initiation and evaluation of Third Party’s evidence for Cyber Security Third Party Risk Assurance assessments within PETRONAS Group.
- Developed a web-based system, Customer Service Report, for Expert Oil and Diagnostic Service (EtODS) to streamline reporting and service tracking processes. - Collaborated with the ICT Team in system testing and development initiatives to support the organization’s digitalization efforts. - Prepared comprehensive documentation including User Manual, Software Requirements Specification (SRS), and User Acceptance Test (UAT) Plan to ensure clear system functionality and smooth user onboarding.