HKFYG-20250228-2183

資訊科技組

• Monitor Security Systems: Continuously monitor network traffic for unusual activity and analyse alerts generated by security tools
• Incident Response: Investigate security breaches and incidents, perform root cause analysis, and implement corrective actions
• Threat Analysis: Research and identify emerging threats and vulnerabilities; recommend and implement appropriate security solutions
• Security Audits: Conduct regular security assessments and audits to ensure compliance with organisational policies and regulatory requirements
• Policy Development: Assist in developing and implementing security policies, standards, and procedures
• Documentation: Maintain detailed documentation of security incidents, investigations, and policies
• Reporting: Prepare reports and presentations on security incidents and overall cybersecurity status for management
• Assist in implementing server virtualization and migration projects.
• Perform system administrative tasks as directed by the supervisor.
• Handle IT system user inquiries and provide follow-up support.
• Assist in any ad hoc project as assigned

- Bachelor’s degree in Computer Science, Computer Engineering or related technical field from an accredited college/university or equivalent work experience

- Good knowledge of security standards such as ISO27001, NIST, security incident handling, SOC operations, and various cyber security solutions

- Holder of information security certifications such as CISSP, CISA, CISM, ISO27001, etc. would be an advantage

- Strong leadership characteristics in driving engagement, adoption and change for cybersecurity processes and technology
- Excellent problem-solving skills and attention to detail
- Strong communication and interpersonal skills

- With at least 2 years of experience supporting and implementing IT cybersecurity for an organization's infrastructure and applications, while also contributing to process building and continuous improvement

31-03-2025

• Please state the  expected salary  in the resume
• Only shortlisted candidates will be notified to attend a written test and/or interview
• If the applicant has not been interviewed within 3 months, the application will be regarded as fail and the information will be destroyed immediately.
• If you are being interviewed but not admitted, information will be destroyed within 1 year after the completion of the recruitment process. 

(The information provided by the applicant will be kept confidential and will only be used for recruitment purposes)