Back to jobs
System Analyst – Cybersecurity
- Posted 08 October 2023
- Salary Performance Bonus (1.5 months), Medical, etc.
- LocationKwun Tong
- Job type Permanent
- Discipline Cyber Security
- ReferenceBH-5399
- Contact NameNicholas Ng
Job description
Responsibilities
• Vulnerability Management: Coordinate and conduct assessments to identify and promptly address system vulnerabilities.
• Incident Response: Lead and participate in responding to incidents, collaborating with other teams as necessary.
• Threat Monitoring: Monitor and analyze logs and alerts from different technologies to detect and handle threats.
• Endpoint Protection: Ensure the adequate security of all endpoints within the organization, including servers, desktops, laptops, and mobile devices.
• Security Tool Management: Supervise the selection, deployment, and maintenance of security software and hardware tools, ensuring their effectiveness and keeping them up to date.
• Policy & Compliance: Assist in the development, maintenance, and enforcement of IT security policies, procedures, and standards.
• Security Awareness and Phishing Simulation: Organize and oversee cybersecurity awareness training for employees, including managing simulated phishing programs to assess and enhance the organization's resilience against email-based threats.
• Reporting: Generate regular reports on security status and risks and present them to upper management.
• Vendor Management: Evaluate the security practices of third-party vendors to ensure they meet the organization's standards.
Requirements
• Bachelor's degree in Computer Science, IT, or a related field.
• 2-5 years of professional experience in cybersecurity.
• Relevant professional certifications such as CISSP, CISA, CEH, or equivalent.
• Hands-on experience with various security devices and cybersecurity tools, including their deployment and management.
• Familiarity with ISO 27001, NIST, and other cybersecurity standards.
• Proficiency in managing a Security Operations Center (SOC).
• Experience with security solutions such as Endpoint Detection and Response (EDR), Network Detection and Response (NDR), and Web Application Firewall (WAF).
• Experience with cloud platforms like AWS and Azure.
• Proven ability to manage security vendors and ensure timely project execution.
• Excellent analytical and problem-solving skills.
• Ability to work both independently and as part of a team.
• Strong communication skills, both verbal and written.
• Vulnerability Management: Coordinate and conduct assessments to identify and promptly address system vulnerabilities.
• Incident Response: Lead and participate in responding to incidents, collaborating with other teams as necessary.
• Threat Monitoring: Monitor and analyze logs and alerts from different technologies to detect and handle threats.
• Endpoint Protection: Ensure the adequate security of all endpoints within the organization, including servers, desktops, laptops, and mobile devices.
• Security Tool Management: Supervise the selection, deployment, and maintenance of security software and hardware tools, ensuring their effectiveness and keeping them up to date.
• Policy & Compliance: Assist in the development, maintenance, and enforcement of IT security policies, procedures, and standards.
• Security Awareness and Phishing Simulation: Organize and oversee cybersecurity awareness training for employees, including managing simulated phishing programs to assess and enhance the organization's resilience against email-based threats.
• Reporting: Generate regular reports on security status and risks and present them to upper management.
• Vendor Management: Evaluate the security practices of third-party vendors to ensure they meet the organization's standards.
Requirements
• Bachelor's degree in Computer Science, IT, or a related field.
• 2-5 years of professional experience in cybersecurity.
• Relevant professional certifications such as CISSP, CISA, CEH, or equivalent.
• Hands-on experience with various security devices and cybersecurity tools, including their deployment and management.
• Familiarity with ISO 27001, NIST, and other cybersecurity standards.
• Proficiency in managing a Security Operations Center (SOC).
• Experience with security solutions such as Endpoint Detection and Response (EDR), Network Detection and Response (NDR), and Web Application Firewall (WAF).
• Experience with cloud platforms like AWS and Azure.
• Proven ability to manage security vendors and ensure timely project execution.
• Excellent analytical and problem-solving skills.
• Ability to work both independently and as part of a team.
• Strong communication skills, both verbal and written.