1 Job Functions
Hong Kong
Work types
HK$
Listed any time
Experience
Education level
Benefits
Industry
1 Job Functions
Hong Kong
Work types
HK$
Listed any time
Experience
Education level
Benefits
Industry
About 137 jobs
New

20 years+


No degree required

$50K-95K/Mth

  • Expertise in cloud security tools and source code scanning

  • Extensive experience in risk assessment and control self-assessment

  • CISSP, CISM, or equivalent certifications required

Be an early applicant
PrimePeak Group Limited

2 years


Bachelor

  • 劳逸平衡 work–life balance & 有偿加班

  • 活力办公室 & 一群志同道合的小巻子

  • 香港上市公司 & 大湾区行业领袖 & 著名客户群

BoardWare

No experience limit


No degree required

  • Security Testing, Security, Computer Science

BUPA

No experience limit


Bachelor

  • In-depth understanding of cloud security principles

  • Relevant certification (CISSP, CISA, OSCP, CEH, ISO 27001, NIST) is an advantage

  • Minimum 8 years experience in information security

HKMC Annuity Limited

No experience limit


No degree required

  • Competitive salary with retirement benefits at 10% of basic salary

  • Bachelor's degree or higher in IT for IT Officer

  • Minimum 2 years' IT experience required

HKU

No experience limit


Bachelor

  • Bachelor Degree in Information security, Computer Science, Information System

  • Minimum four years work experience in IT security

  • Certifications: CISSP/ CISM/ CISA/ CEH/ CCSP

ADECCO

No experience limit


No degree required

  • Extensive knowledge in security and risk management required

  • University Degree or equivalent in Computer Science, Information Systems Management

  • Applicable industry certification (CISSP, CISA, CISM, CCSK) advantageous

KPMG

No experience limit


No degree required

  • Manage and lead hybrid team in Security Operations Center (SOC)

  • Knowledge of International Security Frameworks and Standards

  • Strong hands-on experience with information security systems

Asian Infrastructure Investment Bank (AIIB)

No experience limit


No degree required

  • Assist in development & management of cyber security policies

  • Experience in IT industry, focus on cyber security

  • Professional certification in CISSP, CISA, CISM, CEH preferred

West Kowloon Cultural District Authority

2 years


No degree required

  • Training and certification subsidies

  • Minimum 2 years' experience in security professional service

  • Good command of English and Cantonese

Evolution Security Consulting Limited

Technical Service Delivery - Infrastructure & Security- HK$50K - 95K/month + B

PrimePeak Group Limited
Human Resources Management / Consultancy
HK $50K-95K/Month
No degree required
20 years+
Full Time
Central and Western,Peak

Send application message

Job Description

Technical Service Delivery Lead who focus on Infrastructure & Security

Responsibilities:

Infrastructure & Security:

  • Managing and supporting Microsoft Windows Servers and other related systems
  • Collaborate with VMware Engineering team to provide deep level troubleshoot and root cause analysis on UCS, ESX and VMware Virtual center and MS servers products
  • Leverage GPO rules to redirect all application window server security audit log events and ingest IBM QRadar SIEM for SOC monitoring and threat detection.
  • Perform third-party risk assessments and generate risk heatmaps through Supply Chain Management.
  • Coordinate external penetration testing for internet-facing websites/applications and ensure follow-up on remediation progress.
  • Develop risk assessment reports and implement risk mitigation strategies to acceptable levels.
  • Collaborate with the CISO to draft and refine onsite assessment checklists.
  • Conduct threat modeling with the global security team to identify security requirements, prioritize threats, and develop remediation plans.
  • Participate in security audits such as PCI-DSS, ISO27001, and regional IT control assessments.
  • Establish and maintain an Incident Response Playbook & Procedures.

Cloud Security:

  • Perform compliance checks on AWS cloud resources using Prisma Cloud.
  • Examine and address container vulnerabilities in AWS EKS via Prisma.
  • Use CheckMarx (SAST) for vulnerability code scanning within CI/CD pipelines in a DevOps environment.

Service Delivery Management:

  • Collaborate with business owners to design and implement BCP & DR drills for critical applications.
  • Evaluate change request tickets, manage system integrity, and host weekly CAB meetings to prevent unauthorized changes.
  • Conduct various compliance audits to ensure industry standards and legal regulations are met.
    Requirements:
  • Extensive experience in risk assessment, mitigation, and control self-assessment.
  • Expertise in vulnerability assessment and incident management.
  • Proficiency in cloud security tools (e.g., Prisma, AWS services) and source code scanning (CheckMarx).
  • Strong knowledge of Active Directory security, GPO rules, and IBM QRadar SIEM.
  • Experience hosting CAB meetings, managing change requests, and overseeing IT audits.
  • Hands-on experience with OpenShift, container management, and cloud platforms (AWS, EKS).
  • Strong familiarity with compliance frameworks (ISO27001, PCI-DSS) and disaster recovery planning.
  • CISSP, CISM, or equivalent certifications.
  • AWS Certified Security or similar cloud security certifications.

Company Overview

Our Group Internal Audit serves to provide independent and objective assurance to the Board, Audit Committee and the executive management on the adequacy and effectiveness of internal controls.Due to country business expansion, the department is currently seeking for highly independent and self-motivated IT Audit OR Internal Audit professional to join them, reporting to the Senior Vice President of Group Internal Audit.


Be careful

Don’t provide your bank or credit card details when applying for jobs.

Send application message