Responsibilities:

• Improve cyber security defence, attack preparedness, incident respond readiness, recovery procedures and contingency plan
• Support ad-hoc security and risk analyses and prepare incident report for critical incident to management
• Assist in regular cyber-attack simulation exercises and regular internal cyber security assessments to test the organisation’s security controls sufficiency
• Provide support in vulnerability management operation, including schedule regular system & network infrastructure, applications systems and endpoints vulnerability scanning, classify & prioritize findings, identify relevant risks and co-operate with relevant parties for remedy actions
• Assist in reviewing and maintaining cyber security policies, standards & procedures in compliance with information security & risk management policies, standards and guidelines
• Provide support in developing and arranging technical implementation for security objectives, including device hardening (Windows, Linux, K8s) & security alerts (Elasticsearch alerts, customized scripting alerts) etc.

Requirements:

• Degree in Computer Science, IT, Cyber Security or related disciplines
• Minimum 3 – 4 years’ solid experience in cyber security management with extensive knowledge of best practices, concepts and international security standard
• Hands-on experience with cyber security operation including but not limited to:
  • Basic scripting: Python, Bash script and / or PowerShell
  • Offensive security: Tenable Nessus, Burp Suite, OWASP ZAP, Kali and Nmap
  • Defensive security: Security hardening, NGFW, WAF, IPS / IDS, NAC, EDR and Anti-virus
  • SIEM: Elasticsearch and Splunk
  • Incident handling
• Good knowledge of enterprise IT environment:
  • Linux, Windows, Active Directory and networking
  • IoT, Big Data and Docker
  • On-premises / Cloud / Hybrid environment
• Familiar with system and network infrastructure solution
• Excellent interpersonal skills, strong analytical and problem-solving skills with the ability to learn quickly
• Self-motivated team player and able to work under pressure
• Possess relevant security qualifications such as CEH, CHFI, ITIL, CCSA, CISSP and CISA is an advantage
• Proficiency in English, Chinese and Mandarin is a plus
• Candidates with less experience will be considered for the post of Cyber Security Engineer

Attractive salary and fringe benefits will be offered to the successful candidates. Please apply with full resume by mail to Human Resources Department, Henderson Land Development Co. Ltd., 71/F, Two International Finance Centre, 8 Finance Street, Central, Hong Kong or by fax at 2905 1855 or by e-mail to recruitment@hld.com or visit our homepage at http://www.hld.com

(Please quote the ref. no. on letter)

Personal data provided by job applicants will be used for recruitment purpose only.