工作描述
16 天前
Technology Risk Manager (Cyber Security Control Division)
Roles and Responsibilities & Specific Requirements (Cyber Security):
• Provide Cyber Security incident response operation and support.
• Experience in arrangement and co-ordination of cross-countries cyber incident response drills.
• Experience in Security operations, managing SOC, Offensive security, Container security, Threat Hunting, OSINT, Darkweb monitoring, Malware analysis, DevSecOps , Digital forensics and Attack Surface Management.
• Research and evaluate on latest security threats and Cyber Threat Intelligence.
• Participate in Red & Purple Teaming exercises and relevant validation controls.
• Familiar with technologies on Firewall, IDS, IPS, WAF, SIEM, SOAR, DLP, UEBA, BAS, XDR, Deception and Network/Cloud Infrastructure are preferable. General Job Requirements:
• Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
• Over 5 years of experience in IT security, technology risk management, compliance or IT audit function, gained from other sizable financial institutions
• Holding at least one recognized professional qualification under HKMA enhanced competency framework such as CISA, CISSP, CRISC. Industry-recognized cyber security certifications ,such as OSCP/OSCE/OSWE/OSEE/GXPN/GPEN/GCPN/GCIH/GCFA/OSDA, is preferable
• Familiar with HKMA TM-E-1, TM-G-1, PCI-DSS, ISO 2700-series or other security risk management framework is an advantage
• Good command of written and spoken English with Mandarin is preferable and
• Good communication and interpersonal skills.
Roles and Responsibilities & Specific Requirements (Cyber Security):
• Provide Cyber Security incident response operation and support.
• Experience in arrangement and co-ordination of cross-countries cyber incident response drills.
• Experience in Security operations, managing SOC, Offensive security, Container security, Threat Hunting, OSINT, Darkweb monitoring, Malware analysis, DevSecOps , Digital forensics and Attack Surface Management.
• Research and evaluate on latest security threats and Cyber Threat Intelligence.
• Participate in Red & Purple Teaming exercises and relevant validation controls.
• Familiar with technologies on Firewall, IDS, IPS, WAF, SIEM, SOAR, DLP, UEBA, BAS, XDR, Deception and Network/Cloud Infrastructure are preferable. General Job Requirements:
• Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
• Over 5 years of experience in IT security, technology risk management, compliance or IT audit function, gained from other sizable financial institutions
• Holding at least one recognized professional qualification under HKMA enhanced competency framework such as CISA, CISSP, CRISC. Industry-recognized cyber security certifications ,such as OSCP/OSCE/OSWE/OSEE/GXPN/GPEN/GCPN/GCIH/GCFA/OSDA, is preferable
• Familiar with HKMA TM-E-1, TM-G-1, PCI-DSS, ISO 2700-series or other security risk management framework is an advantage
• Good command of written and spoken English with Mandarin is preferable and
• Good communication and interpersonal skills.
Operation Manager / Customer Due Diligence Manager (CDD Division)
Bank of China (Hong Kong) Limited
商業管理
中西區, 香港
7 天前
全職
辦公室工作
科技、資訊和媒體
Business Analyst (Core Banking)
Bank of China (Hong Kong) Limited
商業管理
中西區, 香港
7 天前
全職
辦公室工作
科技、資訊和媒體
Business Analyst – Workflow/Process Management
Bank of China (Hong Kong) Limited
商業管理
中西區, 香港
7 天前
合約
辦公室工作
科技、資訊和媒體
Senior / IT Project Manager (SAE)
Bank of China (Hong Kong) Limited
產品/項目經理
中西區, 香港
7 天前
全職
辦公室工作
科技、資訊和媒體
Corporate Services Manager (Project Management)
Bank of China (Hong Kong) Limited
產品/項目經理
中西區, 香港
7 天前
全職
辦公室工作
科技、資訊和媒體
Senior Backend Engineer - API and Microservice
Bank of China (Hong Kong) Limited
軟件工程師
中西區, 香港
7 天前
全職
辦公室工作
科技、資訊和媒體
更多相似工作
Senior / Technology Risk Manager (Cyber Security Control Division)
Bank of China (Hong Kong) Limited
中西區, 香港
Senior / Technology Risk Manager (Cyber Security Control Division)
Bank of China (Hong Kong) Limited
中西區, 香港
🎉 Got an interview?