Job ref no.: CT3118333-01#0083

Assistant Manager - Cybersecurity


  • 5-day week
  • 13-month pay
  • Birthday leave
  • Compassionate leave
  • Competitive pay
  • Dental plan
  • Discretionary bonus
  • Education subsidies
  • Extra paternity leave
  • Family medical plan
  • Family-friendly Leave
  • Insurance plan
  • Marriage leave
  • Meal allowance
  • Medical plan
  • Special / extra leave
  • Year-end bonus
  • … + 11 more

Job Responsibilities:
Governance and Compliance
  • Design, develop, implement and maintain security architecture to ensure the compliance with government regulations and international standards such as HKMA, VISA, ISO27001, PCI DSS, etc.
  • Perform security risk assessment and advise risk mitigation measures to reduce risk exposure in IT application and infrastructure
  • Assist to formulate the security policies, standards and procedures
  • Work with internal and external auditors on various compliance standards e.g. ISO27001, Master Card International Accredited local and physical audit
  • Enforce information security policy and standards on physical and logical controls
  • Perform Periodic Security Review
Security Management
  • Monitor performance managed security services and work with Infrastructure team to rectify issues
  • Work with service provider to conduct incident response, threat hunting and forensicinvestigation
  • Conduct or manage service provider to conduct vulnerability assessment and penetration test
  • Work with internal and extern party to support system drill
  • Provide emergency support for security issues when an event occurs

Security Project

  • Take part in security solution evaluation and monitor implementation
  • Prepare security paper for new product or services
  • Work with vendors to understand the up-to-update related security technology for the possible implementation of projects
Job Requirements:
  • Possess a bachelor degree in information technology, information systems or equivalent
  • 5+ years’ experience in information security, preferablyin financial industry
  • One or more of the following qualifications: CISSP, CISA, CISM, CEH or the like
  • Knowledge of ISO27001, PCI, pentest and vulnerability assessment, system and network security, preferably with exposure in security solution. E.g. APT, PAM, Encryption, SIEM
  • Good verbal communication and written skill
  • Good command of written and spoken English and Chinese

We offer competitive remuneration package and career prospects to the right candidate. Salary will be commensurate with qualifications and experience. Our attractive remuneration package includes 5-day work week, year-end bonus, performance bonus, dental and medical benefits, employer voluntary contributions to MPF, education allowance, staff well-being sponsorship, birthday leave, marriage leave, family care leave, etc.

Interested candidates please send your full resume stating contact details, current and expected salary by clicking Apply Now.

Personal data collected will be used for recruitment purpose only. We are an equal opportunity employer.

More job information
Job ref no. CT3118333-01#0083
  • N/A
Job Function
  • Wanchai
Employment Term
  • Permanent
  • Full-time
  • 5 years - 10 years
Career Level
  • Middle management level
  • Degree
  • Master's degree