<p><strong>Responsibilities:</strong></p><ul><li>Improve cyber security defence, attack preparedness, incident respond readiness, recovery procedures and contingency plan</li><li>Support ad-hoc security and risk analyses and prepare incident report for critical incident to management</li><li>Assist in regular cyber-attack simulation exercises and regular internal cyber security assessments to test the organisation’s security controls sufficiency</li><li>Provide support in vulnerability management operation, including schedule regular system & network infrastructure, applications systems and endpoints vulnerability scanning, classify & prioritize findings, identify relevant risks and co-operate with relevant parties for remedy actions</li><li>Assist in reviewing and maintaining cyber security policies, standards & procedures in compliance with information security & risk management policies, standards and guidelines</li><li>Provide support in developing and arranging technical implementation for security objectives, including device hardening (Windows, Linux, K8s) & security alerts (Elasticsearch alerts, customized scripting alerts) etc.</li></ul><p><strong>Requirements:<br></strong></p><ul><li>Degree in Computer Science, IT, Cyber Security or related disciplines</li><li>Minimum 3 – 4 years’ solid experience in cyber security management with extensive knowledge of best practices, concepts and international security standard</li><li>Hands-on experience with cyber security operation including but not limited to:<ul><li>Basic scripting: Python, Bash script and / or PowerShell</li><li>Offensive security: Tenable Nessus, Burp Suite, OWASP ZAP, Kali and Nmap</li><li>Defensive security: Security hardening, NGFW, WAF, IPS / IDS, NAC, EDR and Anti-virus</li><li>SIEM: Elasticsearch and Splunk</li><li>Incident handling</li></ul></li><li>Good knowledge of enterprise IT environment:<ul><li>Linux, Windows, Active Directory and networking</li><li>IoT, Big Data and Docker</li><li>On-premises / Cloud / Hybrid environment</li></ul></li><li>Familiar with system and network infrastructure solution</li><li>Excellent interpersonal skills, strong analytical and problem-solving skills with the ability to learn quickly</li><li>Self-motivated team player and able to work under pressure</li><li>Possess relevant security qualifications such as CEH, CHFI, ITIL, CCSA, CISSP and CISA is an advantage</li><li>Proficiency in English, Chinese and Mandarin is a plus</li><li>Candidates with less experience will be considered for the post of Cyber Security Engineer</li></ul>