Key Responsibilities

* Responsible for the planning, deployment, administration, and maintenance of enterprise network and information security systems.

* Monitor security events and system logs, analyze abnormal activities, and identify potential threats.

* Conduct vulnerability scanning, security assessments, and risk analyses, and follow up on remediation activities.

* Manage and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus solutions, and other security devices.

* Develop, implement, and enforce information security policies, procedures, and technical standards.

* Assist in handling cybersecurity incidents, including investigation, analysis, containment, eradication, and recovery.

* Provide security configuration and technical support for servers, network devices, cloud platforms, and endpoint devices.

* Perform regular security testing and system reviews to identify and mitigate potential risks.

* Support internal audits and external compliance requirements to ensure adherence to information security standards and regulatory requirements.

* Prepare technical documentation, incident reports, and risk assessment reports.

* Stay up to date with the latest cybersecurity trends, vulnerabilities, and attack techniques, and recommend security improvements.

Job Requirements

* Diploma or above in Information Technology, Computer Science, Network Engineering, Information Security, or a related discipline.

* Relevant experience in cybersecurity, system administration, or related fields.

* Solid understanding of TCP/IP, DNS, VPN, Firewalls, and other networking technologies.

* Familiarity with Windows and/or Linux system administration.

* Knowledge of vulnerability management, security monitoring, and incident response.

* Experience with cloud security technologies (e.g., AWS, Azure, or GCP) is an advantage.

* Familiarity with SIEM platforms, security monitoring tools, and penetration testing tools is preferred.

AI & GenAI Security OWASP LLM/Agentic AI/ML Top 10, MITRE ATLAS

* Cyber Risk Assessment AI Threat Modeling & Security Strategy

* Regulatory Compliance HKMA C-RAF 2.0, SFC, MAS

* Cloud Security AWS, GCP, Azure Architecture

* Frameworks ISO 27001, NIST CSF, PCI DSS, COBIT

* Incident Response MITRE ATT&CK & MITRE ATLAS Frameworks

OWASP, Frameworks ISO 27001, NIST CSF, PCI DSS, COBIT, MITRE ATT&CK & MITRE ATLAS Frameworks

* Professional certifications are highly desirable, including:

* CISSP

* CISM

* CISP

* CISA

* Strong analytical thinking, problem-solving skills, and teamwork spirit.

* Ability to work independently with excellent written and verbal communication skills in both English and Chinese.

We Offer

* Discretionary Performance Bonus

* Medical Benefits

* Excellent Career Advancement Opportunities

* Opportunities to participate in large-scale cybersecurity projects and work with the latest security technologies and solutions.

薪酬： $25,000.00至$38,000.00（每月）

福利：

• 有薪年假
• 有薪病假
• 育嬰假
• 產假
• 彈性上班時間
• 醫療保險

教育程度:

• 學士 (必要條件)

工作經驗:

• 網絡安全: 2 年 (必要條件)

執照/認證:

• 相關專業認證 (必要條件)

Work Location: 親身到場