Job Description
47 days ago
Responsibilities
· Develop and establish comprehensive information security policies, business continuity plan (BCP), manuals, and procedures
· Monitor and oversee security administration, including application logical access, identity management, hardening, security monitoring, and vulnerability management
· Define and design security setups, access control matrix, and conduct control reviews
· Conduct IT security risk assessments and reviews of outsourcing service providers
· Perform regulatory compliance assessments and reporting
· Implement IT security systems and execute related projects
· Identifying and acting on improvements, pathing, hardening, and updating software and systems
· Validate and enforce baseline security configurations for operating systems, applications
· Handle security incidents, conduct investigations, and prepare incident reports
· Reviews and analyses daily security intelligence feeds, provides detection engineering recommendations, and applies protections to mitigate new threats.
· Provide security awareness training to staff and offer consultation on information security matters
Qualifications
· Hold a university degree or above in Computer Science or a related discipline
· Min. 8 years of experience in information security with at least 3 years in financial/digital asset industry
· Hold a recognized certificate such as CISA, CISSP, CISM, or similar
· Strong knowledge of information security and risk management principles
· Thorough understanding of SFC regulations related to technology risk management and cybersecurity preferred
· Technical expertise in network, server, operating systems, databases, security, and applications
· Extensive experience in implementing security solutions, server and network administration, and incident management
· Proficiency in both spoken and written English, Cantonese, and Mandarin
· Candidates with more experience may be considered for Senior Manager role
We offer a competitive remuneration package and excellent career prospects to qualified candidates. Interested parties please send your full resumes with present and expected salaries to us at recruit@hkbitex.com.hk
All applications will be treated in the strictest confidence and personal data collected will be used for recruitment purposes only.
· Develop and establish comprehensive information security policies, business continuity plan (BCP), manuals, and procedures
· Monitor and oversee security administration, including application logical access, identity management, hardening, security monitoring, and vulnerability management
· Define and design security setups, access control matrix, and conduct control reviews
· Conduct IT security risk assessments and reviews of outsourcing service providers
· Perform regulatory compliance assessments and reporting
· Implement IT security systems and execute related projects
· Identifying and acting on improvements, pathing, hardening, and updating software and systems
· Validate and enforce baseline security configurations for operating systems, applications
· Handle security incidents, conduct investigations, and prepare incident reports
· Reviews and analyses daily security intelligence feeds, provides detection engineering recommendations, and applies protections to mitigate new threats.
· Provide security awareness training to staff and offer consultation on information security matters
Qualifications
· Hold a university degree or above in Computer Science or a related discipline
· Min. 8 years of experience in information security with at least 3 years in financial/digital asset industry
· Hold a recognized certificate such as CISA, CISSP, CISM, or similar
· Strong knowledge of information security and risk management principles
· Thorough understanding of SFC regulations related to technology risk management and cybersecurity preferred
· Technical expertise in network, server, operating systems, databases, security, and applications
· Extensive experience in implementing security solutions, server and network administration, and incident management
· Proficiency in both spoken and written English, Cantonese, and Mandarin
· Candidates with more experience may be considered for Senior Manager role
We offer a competitive remuneration package and excellent career prospects to qualified candidates. Interested parties please send your full resumes with present and expected salaries to us at recruit@hkbitex.com.hk
All applications will be treated in the strictest confidence and personal data collected will be used for recruitment purposes only.
More jobs like this
Information Security Manager/ Senior Manager
国泰君安国际 Guotai Junan International
Central and Western, Hong Kong
Senior IT Specialist (Information Security) (Ref:IT-ISNS-SITS-IS-CT)
The Hongkong Electric Co., Ltd.
Central and Western, Hong Kong
Senior IT Specialist (Information Security) (Ref:IT-ISNS-SITS-IS-CT)
The Hongkong Electric Co., Ltd.
Central and Western, Hong Kong
Senior / Technology Risk Manager (Cyber Security Control Division)
Bank of China (Hong Kong) Limited
Central and Western, Hong Kong
🎉 Got an interview?