About Us:

As a global leader in insurance and financial services, we have been recognized for our innovation, customer-centric solutions, and commitment to excellence. With a legacy spanning over a century, we have grown to become one of the largest and most trusted organizations in the industry, serving millions of customers worldwide.

Key Responsibilities:

• Act as the liaison between the Group Cybersecurity Team and internal teams
• Track, document, and ensure timely resolution of assigned cybersecurity incidents
• Escalate critical security issues to management and technical teams when necessary
• Provide incident reports and post-incident summaries
• Ensure adherence to incident response frameworks (e.g. NIST, SANS, ITIL)
• Maintain accurate records of security changes and incident resolutions
• Review and validate firewall rule change requests to ensure security compliance and work with IT teams to optimize firewall rules and reduce unnecessary access
• Assist in managing and tuning WAF policies to protect web applications and support troubleshooting and resolving WAF-related issues
• To protect systems, networks, data from unauthorized access, breaches, and cyber threats

Requirements:

• Bachelor’s degree in Cybersecurity, IT, or a related field (or equivalent experience)
• 2-6 years of experience in incident coordination, security operations, or infrastructure security
• Experience in firewall rule management and security best practices
• Understanding of Web Application Firewalls (WAF) and web security principles
• Familiarity with network security concepts (fireworks, network security group, zero trust, IDS/IPS, VPNs, cloud security)
• Basic knowledge of security frameworks (e.g. NIST, CIS, ISO 27001)
• Good command of written and spoken English and Chinese
• Strong communication skills: be able to explain risks that are often complex and obscure to non-specialists; a good listener who can understand stakeholders’ concerns
• Ability to prioritize incidents and security tasks under pressure
• Detail-oriented with strong documentation and reporting skills