Back to jobs
Assistant Vice President, IT Security
- Posted 09 October 2023
- Salary Performance Bonus (2-4 months), 20+ days AL, medical
- LocationKowloon
- Job type Permanent
- Discipline Cyber Security
- ReferenceBH-5367
- Contact NameNicholas Ng
Job description
Responsibilities:
• Conduct vulnerability scanning and penetration tests for the bank's systems, including infrastructure, web applications, and mobile applications.
• Provide support for IT security systems, including database firewall, Tenable Security Center, and web application firewall (WAF).
• Perform system hardening for e-banking systems to enhance their security.
• Collaborate and monitor the cyber threat landscape by utilizing open-source channels and vendor feeds, and analyze cyber threat intelligence.
• Advise management on the latest trends in cyber intelligence and best practices by closely engaging with the security industry and government agencies.
• Take the lead in developing and implementing mitigation proposals to prevent potential threats.
Requirements:
• Hold a degree in Computer Science, IT Management, Engineering, or a related field.
• Possess practical knowledge and hands-on experience in managing network security devices, such as Next-Gen firewall, IDS/IPS, McAfee, ForcePoint, Splunk, FireEye EX and NX, NDR, firewall management tools, and NAC.
• Have a minimum of 3 years of relevant experience in network security.
• Familiarity with regulatory requirements such as HKMA, PCI-DSS, etc.
• Professional certifications such as CISSP, CIMS, CISA, or equivalent would be advantageous.
• Excellent communication skills and proficiency in English report writing.
• Self-motivated and capable of working independently.
• Conduct vulnerability scanning and penetration tests for the bank's systems, including infrastructure, web applications, and mobile applications.
• Provide support for IT security systems, including database firewall, Tenable Security Center, and web application firewall (WAF).
• Perform system hardening for e-banking systems to enhance their security.
• Collaborate and monitor the cyber threat landscape by utilizing open-source channels and vendor feeds, and analyze cyber threat intelligence.
• Advise management on the latest trends in cyber intelligence and best practices by closely engaging with the security industry and government agencies.
• Take the lead in developing and implementing mitigation proposals to prevent potential threats.
Requirements:
• Hold a degree in Computer Science, IT Management, Engineering, or a related field.
• Possess practical knowledge and hands-on experience in managing network security devices, such as Next-Gen firewall, IDS/IPS, McAfee, ForcePoint, Splunk, FireEye EX and NX, NDR, firewall management tools, and NAC.
• Have a minimum of 3 years of relevant experience in network security.
• Familiarity with regulatory requirements such as HKMA, PCI-DSS, etc.
• Professional certifications such as CISSP, CIMS, CISA, or equivalent would be advantageous.
• Excellent communication skills and proficiency in English report writing.
• Self-motivated and capable of working independently.