Talent.com
This job offer is not available in your country.
CYBER SECURITY AND RISK ANALYST / CYBER SECURITY ENGINEER

CYBER SECURITY AND RISK ANALYST / CYBER SECURITY ENGINEER

Henderson Land Development Company Limited 恒基兆業地產有限公司Hong Kong
30+ days ago
Job description

Responsibilities :

  • Improve cyber security defence, attack preparedness, incident respond readiness, recovery procedures and contingency plan
  • Support ad-hoc security and risk analyses and prepare incident report for critical incident to management
  • Assist in regular cyber-attack simulation exercises and regular internal cyber security assessments to test the organisation’s security controls sufficiency
  • Provide support in vulnerability management operation, including schedule regular system & network infrastructure, applications systems and endpoints vulnerability scanning, classify & prioritize findings, identify relevant risks and co-operate with relevant parties for remedy actions
  • Assist in reviewing and maintaining cyber security policies, standards & procedures in compliance with information security & risk management policies, standards and guidelines
  • Provide support in developing and arranging technical implementation for security objectives, including device hardening (Windows, Linux, K8s) & security alerts (Elasticsearch alerts, customized scripting alerts) etc.

Requirements :

  • Degree in Computer Science, IT, Cyber Security or related disciplines
  • Minimum 3 – 4 years’ solid experience in cyber security management with extensive knowledge of best practices, concepts and international security standard
  • Hands-on experience with cyber security operation including but not limited to :

    • Basic scripting : Python, Bash script and / or PowerShell

  • Offensive security : Tenable Nessus, Burp Suite, OWASP ZAP, Kali and Nmap
  • Defensive security : Security hardening, NGFW, WAF, IPS / IDS, NAC, EDR and Anti-virus
  • SIEM : Elasticsearch and Splunk
  • Incident handling
  • Good knowledge of enterprise IT environment :

    • Linux, Windows, Active Directory and networking

  • IoT, Big Data and Docker
  • On-premises / Cloud / Hybrid environment
  • Familiar with system and network infrastructure solution
  • Excellent interpersonal skills, strong analytical and problem-solving skills with the ability to learn quickly
  • Self-motivated team player and able to work under pressure
  • Possess relevant security qualifications such as CEH, CHFI, ITIL, CCSA, CISSP and CISA is an advantage
  • Proficiency in English, Chinese and Mandarin is a plus
  • Candidates with less experience will be considered for the post of Cyber Security Engineer
    • Create a job alert for this search

    Analyst Analyst Analyst • Hong Kong