Job ref no.: 116211/HL
China CITIC Bank International Limited

Senior IT Security Specialist

China CITIC Bank International Limited

Job Purpose:
Implement, maintain and review Cyber security controls to address the risks as stipulated by regulatory requirement and other best practice framework. Ensure security infrastructure is stable and reliable for delivering services to business. Provide security advisories on IT related projects. Review and ensure IT projects comply with IT security standards, guidelines and baselines. Ensure IT infrastructure setups are aligned with bank’s internal policy as well as regulatory requirement in order to provide secured IT environment for delivering services to business.


  • Maintains information and cyber security standard & baseline
  • Assists to defines IT security framework to guard against Cyber security exposure and technology risk
  • Assists to develop and maintain Cyber Security strategy and program to guard against security exposure and technology risk
  • Advise and develops & maintains information security standard & baseline, and ensure configuration compliance with established standard & baseline by conducting regular re-certification
  • To maintains and improve the security measures on Customer Data Protection (CDP) and Data Leakage Protection (DLP) solutions, and to comply with regulatory requirements
  • Evaluates, recommends and manages the implementation of security solution including but not limited to BYOD, DLP, DDoS, Phishing, APT, Cloud, etc
  • Manages the implementation of policy or intelligence based security solution for End Point Protection, DLP, APT, Application White-listing, etc per C-RAF requirement
  • Assists to drive cybersecurity related projects including scope definition, vendor coordination, scheduling and technical implementation.
  • Drives the continuous improvement in SIEM correlation and used cases
  • Assists to develop Security Operation Center (SOC) and establish KPI to formalize the measurement of degree of attack and our defense ability
  • Make use of automation tool to ensure the platform and network security in compliance with the established standard and baseline
  • Conduct security risk assessment for application, infrastructure and adoption of new technologies
  • Liaises with internal and external parties / audits on handling the technical response to the audit review and assessment initiated
  • Reviews exception events/logs from in-house security platforms as well as from market intelligence
  • Provides security advice to internal users
  • Develops, implements and reviews security awareness tips, training and testing
  • Advises Overseas branch with regards to IT security matters
  • Manages IT vendors to ensure the quality of deliverables.
  • Reviews and comments IT infrastructure and application initiatives whether the design and architecture aligns with internal security policies and best practices


  • Degree holder in Information Technology or related discipline.
  • Min 7 years’ experience in IT in which at least 4 years are IT or Network Security relevant.
  • Obtained Core / Professional level qualification of Relevant Practitioner under HKMA ECF on Cybersecurity
  • Certified in CISSP, CISA, CISM or other recognized certificate is a must
  • DLP or Data Privacy related professional certification is preferred
  • Certified in CEH, GIAC, CCNP would be an added advantage
  • Knowledge on various platforms’ operation system such as Windows, Unix, Linux.
  • Know-how to detect, investigate and resolve Cyber attacks, and coordinate with law enforcement body or Cyber security protection alliance
  • Knowledge on electronic certificates operations and management.
  • Familiar with network security products such as Firewall, Router, Switch, DDoS, IDS/IPS, Load-balancer, SSL VPN, End-point protection, DLP and APT solution.
  • Familiar and experienced the IT DLP solutions to fulfill the HKMA CDP requirement
  • Familiar with the emerging technology and security standard for VDI, Mobility, Cloud, etc
  • Knowledge on regulatory requirements such as HKMA (TM-E-1, TM-G-1, TM-G-2, SA-2), MAS, PCI-DSS and etc.
  • Possess domain knowledge of retail banking 

For more details about career opportunities with the Bank, please visit our website Please apply with full resume stating current and expected salaries.

Personal data collected will be used for recruitment related purposes only. Applicants not invited for interview within 6 weeks may consider their applications unsuccessful. However, applicants may be considered for other suitable positions within the Group for a period of not more than 2 years. Personal data will be destroyed at any time after 3 months.

China CITIC Bank International is committed to being an equal opportunities employer and intends to provide a work environment free of unlawful discrimination or harassment. All employment decisions will be made in a non-discriminatory manner.