Additional Information
Job Description:
Dentsu is a global leader in integrated growth and transformation, driving sustainable solutions and innovation for some of the world's most influential brands. Founded in 1901, dentsu operates in approximately 120 countries with a team of approximately 68,000 employees, and boasts a network of world-class brands, including Carat, Dentsu Creative, dentsu X, iProspect, Merkle, and more. These brands, each with deep expertise in media, creativity, and digital, collaborate to deliver integrated growth solutions that create lasting, meaningful impact.
As we look toward the future, dentsu is focused on Innovating to impact-fostering collaboration, creativity, and cutting-edge technology to drive real, transformative change.
What your typical day will look like:
As a Security Risk Analyst , you'll support the assessment, management, and reporting of cyber security risk across dentsu International. You'll help operate the global security risk management framework, manage risk registers and Key Risk Indicators (KRIs), and provide actionable insight to support informed decision‑making and effective oversight of risk reduction activities. You'll work closely with technology and global functions and support governance forums, reporting into the Head of Security Risk, Policy & Controls.
Core responsibilities include:
Coordinate and manage security risk assessments using established risk management frameworks, ensuring risks, issues, and policy exceptions are identified, assessed, and treated appropriately.
Maintain global security risk registers, issue logs, and supporting documentation, ensuring accuracy, governance compliance, and audit readiness.
Monitor, manage, and report on Key Risk Indicators (KRIs), risk trends, emerging threats, and remediation progress, escalating concerns where necessary.
Produce risk reporting and insights for senior stakeholders, governance committees, and security forums to support informed decision-making.
Lead security issue management activities and collaborate with risk owners, technology teams, and business functions to drive effective risk mitigation and control improvements.
Promote adoption of security risk management processes, provide guidance on risk management platforms, and support continuous improvement of risk governance practices across global markets.
A bit about you:
Proven experience in security risk management, assurance, and control assessments within medium to large enterprise environments.
Strong understanding of information security across people, process, and technology domains, with knowledge of security and enterprise risk management frameworks.
Experienced in managing risk registers, KRIs, remediation tracking, and governance reporting through GRC platforms and related technologies.
Confident communicator with the ability to translate complex technical concepts into business-friendly language and influence stakeholders at all levels.
Self-motivated and proactive professional with strong organisational skills, a continuous improvement mindset, and a commitment to developing expertise within the information security and risk management field; security certifications (CISSP, CISM, CISA, CRISC) are advantageous.
Dentsuaegis · Kuala Lumpur, Malaysia