Develop strategies for the protection of computer systems and networks efficiently and cost effectively supporting the prescribed cyber-security objectives
Plan and implement adequate preventive, detection and control measures, including installing and using software for data encryption and firewalls
Configure and support security tools such as firewalls, anti-virus software, patch management systems, etc.
Establish policy / mechanism to conduct vulnerability testing, risk analyses and security assessments
Lead the incident response mechanism and drive the analysis of security incidents (incident response)
Develop and implement cybersecurity policies and procedures for employees and others with access to computer, network and data systems including training and promotion on cybersecurity awareness
Analyze industry trends and cyber threats and make recommendation to Senior Management for improving risk posture.
Bachelor’s degree in computer science, information security or related area.
At least 6 years’ experience in IT security for financial service industry or its related industry
Hands-on experience in ISO27001 and Cybersecurity strategy formulation and control measure implementation.
Holder of IT Security certifications such as CISSP / CISA / CISM / CISP-HK. Candidate with other qualification such as GPEN / GXPN / GIAC is an advantage.
Job Category : Information Technology Job Level : Managerial