Assistant Manager, Cyber Security

The West Kowloon Cultural District Authority welcomes exceptional talent with a passion to realise the vision and mission of making the West Kowloon Cultural District a prime local and international destination for arts, culture and entertainment.

The ideal candidate will have a strong background in cyber security operations, incident handling and response, with extensive knowledge in cyber security practices and technologies. The Assistant Manager, Cyber Security will be responsible for leading initiatives on the assurance of security and integrity of our information systems. This includes assisting the Cyber Security Manager on the development and implementation of security policies and procedures, enforcing robust security measures, and supporting the overall cyber security strategy of the Authority.

You will be responsible for :

Governance

Assist in the development, implementation, and management of the organization's cyber security policies and procedures;

Support the development and maintenance of business continuity and disaster recovery plans; and

Stay informed about industry regulations and compliance requirements related to cyber security and ensure the organization's adherence.

Enterprise Awareness

Assist in conducting regular security awareness training and internal drills to promote a culture of security awareness throughout the organization; and

Stay up to date with the latest cyber security threats, trends, and technologies, and provide recommendations for enhancing the organisation's security posture.

Enforcement and Operations

Review, assess and mitigate cybersecurity risks through vulnerability assessments, penetration testing, and security audits;

Proactive to lead and coordinate security projects and initiatives, despite under limited supervision from the manager;

Monitor and respond to security incidents, collaborating with Security Operations Center (SOC), vendors and internal stakeholders in investigation, containment and remediation;

Take lead in the implementation, management and governance of security infrastructure and solutions, including M365 security, firewalls, intrusion detection / prevention systems, endpoint protection, network detection and response (NDR), remote access solution (RAS), virtual private network (VPN), privileged access management (PAM), web application firewall (WAF), mobile device management (MDM). and Elasticsearch;

Assist in SOC management to ensure the quality of deliverables and vendor performance in alignment with the contractual KPIs and SLA;

Collaborate with cross-functional teams to ensure the integration of security controls throughout the organization's infrastructure and applications; and

Support the relationship management with external security vendors and consultants.

You should :

possess a recognised university degree in Information Security, Computer Science, or related disciplines;

have minimum of 5 years of working experience in IT industry, with a minimum of 3 years focus on cyber security operation duties;

have strong knowledge of cyber security best practices, standards, and frameworks;

be familiar with ISO27001 framework and other relevant security standards including S17 and G3 of the HKSAR Government;

have trackable hands-on experience with cloud security technologies, such as Azure, AWS, and Cloudflare.

have experience in conducting security risk assessment, security audits and vulnerability assessments for sizable organisations;

possess practical experience with one or more of the following security technologies : firewalls, intrusion detection / prevention systems, WAF, PAM, NDR, EDR, RAS, MDM, SIEM, Elasticsearch and / or network monitoring tools;

be certified with professional certification(s) such as CISSP, CISA, or CISM is preferred;

have prior working experience with common system and infrastructure technologies such as Windows, Linux, virtualization (e.g. VMware), SAN storage, M365 and MS Active Directory;

able to articulate complex cybersecurity technical terms in a way to enable understanding and engage support for risk mitigation solutions;

have proven ability to stay updated with the latest cyber security threats and trends;

have strong analytical and problem-solving skills, with the ability to get to the root causes and make sound decisions in remediation;

have strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams;

be certified with Azure, AWS, Microsoft, Zscaler, Cisco or Fortinet will be an advantage; and

be proficient in written and spoken English and Chinese.