Cybersecurity and Risk Analyst

Cybersecurity and Risk Analyst
Inspire
网络安全
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
工作描述
23 天前
Responsibilities:

• Enhance the organization's cyber security defense, readiness for attacks, incident response preparedness, recovery procedures, and contingency plan.
• Assist in conducting regular cyber-attack simulation exercises and internal assessments to test the effectiveness of the organization's security controls.
• Provide support in vulnerability management operations, including scheduling regular vulnerability scanning for system and network infrastructure and application systems.
• Support ad-hoc security and risk analyses and prepare incident reports for critical incidents, reporting them to management.
• Classify and prioritize findings, identify relevant risks, and collaborate with relevant parties to take remedial actions.
• Review and maintain cyber security policies, standards, and procedures in accordance with information security and risk management policies, standards, and guidelines.
• Support the development and implementation of technical measures to achieve security objectives, such as device hardening (Windows, Linux, K8s), security alerts (Elasticsearch alerts, customized scripting alerts), and others.

Requirements:

• Hold a degree in Computer Science, IT, Cyber Security, or a related field.
• Possess a minimum of 3-4 years of solid experience in cyber security management.
• Have hands-on experience in cyber security operations, e.g., basic scripting (Python, Bash script, and/or PowerShell), offensive security tools (Tenable Nessus, Burp Suite, OWASP ZAP, Kali, and Nmap), defensive security measures (security hardening, NGFW, WAF, IPS/IDS, NAC, EDR, and anti-virus), SIEM tools (Elasticsearch and Splunk), and incident handling.
• Be familiar with system and network infrastructure solutions.
• Demonstrate good knowledge of enterprise IT environments, e.g., Linux, Windows, Active Directory, networking, IoT, Big Data, and Docker, in both on-premises, cloud, and hybrid environments.
• Good to have relevant security certifications such as CEH, CHFI, ITIL, CCSA, CISSP, and CISA.
• Exhibit excellent interpersonal skills, strong analytical and problem-solving abilities, and a quick learning aptitude.
• Proficiency in English, Chinese, and Mandarin is a plus.
• Candidates with less experience will be considered for the position of Cyber Security Engineer.
分享到
更多来自 Inspire
软件工程师
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
数据科学
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
咨询与系统集成
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
网络安全
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
咨询与系统集成
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
咨询与系统集成
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
更多类似工作
System Analyst – Cybersecurity
Inspire
中西区, 香港
Bank of China (Hong Kong) Limited-company-logo
Senior / Technology Risk Manager (Cyber Security Control Division)
Bank of China (Hong Kong) Limited
中西区, 香港
Senior Cybersecurity Analyst
中國移動
中西区, 香港
Bank of China (Hong Kong) Limited-company-logo
Technology Risk Manager
Bank of China (Hong Kong) Limited
中西区, 香港