Key Responsibilities:

• Provide timely detection, identification, and analysis of system activities alerts, and distinguish authorised activities against non-compliance or malicious activities.

• Escalate security events and alerts in a timely manner in accordance to established operating procedures.

• Review compliance to baseline security settings and assess the risks of any deviations.

• Conduct capability study on the Group’s entities to identify gaps and areas for alignment in the implementation of security processes and controls.

• Provide dual control logon and cryptographic support when required.

• Provide administrative support to the identified security systems.

• Propose and process re-engineering initiatives to improve the effectiveness and efficiency of existing processes and procedures via automation.

Key Requirements:

• BSc/BA degree in related technical and security disciplines.

• At least 2-3 years of working experience in technology or information security is preferred.

• Preferably possessing professional certifications / qualifications such as CISSP, CISA or CISM

• VBA or Python programming experience is preferred.

• Basic knowledge on database / network is a plus.

• Strong knowledge in information security principles and technology risk management.

• Experience in security configuration reviews on operating systems including Windows, Unix, HP and the security systems.

• Hands-on experience with security monitoring tools.

• Actively explore in daily operation and able to develop automation tools to enhance team’s efficiency.

• Resourceful and able to engage the various stakeholders to drive outcomes and discussions around new initiatives.

• Strong written and verbal communication skills in English.

• Versatile and able to work individually, within a team and with other IT and business groups.
  

上班地址：深南东路5002号信兴广场地王大厦5楼