Job ref no.: CT3118096-01#1703
The Hong Kong Jockey Club

Information Security Analyst (2-year Contract)

The Hong Kong Jockey Club

Company Profile


Information Technology and Sustainability Division will provide innovative technology solutions that contribute significantly to the Club's mission and strategic objectives.

The Job

You will:

  • Perform technical advisory in assigned project area for ensuring identified information security risks are mitigated and controls are implemented.
  • Coordinate and conduct IS assurance activities on application software and system to identify security exposures. Support and advise IT colleagues on remediation efforts.
  • Coordinate and implement various security solutions and security controls. Support and advise IT colleagues on risk treatments.
  • Work with IT teams in adopting secure programming practices throughout the system development lifecycle; and work with application and technology architects to assess the risk and impact to business of existing and future business applications implementations.
  • Design, planning, execute and document information security architecture and related security framework

About You

You should have:

  • At least 5 years working experience in IT industry with 3 year experience of IT Infrastructure and IT Operation
  • Good understanding of information security, application architecture, risk assessment and risk management which integrated into application development lifecycle.
  • Qualified professional certifications such as CISSP, CISA, CEH, CSSLP or their equivalent would be an advantage.
  • Excellent analytical skills and ability to present technical information and statistics to enable management to make sound decisions.
  • Good knowledge of security, web, mobile and enterprise application infrastructure and design. Good understanding of data analytics and visualization
  • Solid experience of Windows, Linux, AD, Group Policy, Visualization and other Security Solution
  • Knowledge of DevOps process and related tools including Jenkins, JIRA, GitHub, Ansible, UrbanCode or other similar tools would be an advantage.
  • Knowledge of application penetration test, vulnerability scanners, security testing tools and methodologies would be desirable.
  • Knowledge of OWASP Top 10 and ISO27001

Terms of Employment

The level of appointment will be commensurate with qualifications and experience. A contract employment will be offered to the successful candidate. Contract renewal will be subject to mutual agreement between the Club and the individual.

How to Apply

Please send your resume, complete with expected salary and job reference by clicking the Apply Now button.

We are an equal opportunity employer.

Personal data collected will be used for recruitment purposes only.

More job information
Job ref no. CT3118096-01#1703
  • N/A
Job Function
  • Shatin
Employment Term
  • Contract
  • Full-time
  • 5 years - 10 years
Career Level
  • Entry level
  • Degree