Job Responsibilities
- Support and define IT security framework to guard against security risk;
- Review and evaluate the compliance with established policy, procedure and standards on the system, network and database security;
- Manage and handle the vulnerability scanning / penetration test to ensure security compliance;
- Assess current technology architecture and security measures such as anti-virus software, passwords, and firewalls for vulnerabilities, weaknesses and for possible upgrades or improvement;
- Provide information security advice and requirements to IT teams for application, system and network implementation;
- Address information security / cybersecurity issues for the company;
- Work with internal IT team, vendor and business partners to identify security loophole and apply fix;
- Carry out daily monitoring of firewalls, routers, switches, internet connectivity, anti-virus system and patch management system
Requirements
- Bachelor degree or above in Information Technology or Computer Science;
- 5-7 years experience with IT security aspect;
- Have strong security related knowledge in firewall, encryption, server and endpoint protection, intrusion detection, phishing identification and response, vulnerability tool and anti-phishing technologies
- Technical proficiency in network, firewall, cloud infrastructure and Windows server administration is preferred;
- Candidates who possess CISSP, CISA, CISM or CCSP will be an absolute advantage;
- Good command of Cantonese, English and Mandarin;