Our client a Commercial bank is looking to hire IT Security Engineer.
Responsibilities:
- To support the team to conduct regular security assessment, e.g. regular security scanning, handling SPAM/Phishing incident, etc.
- To support and follow up the TVM process.
- To support the new security related project team's administration and documents tasks, such as IAM, Cloud Adoption, STDB, etc.
- To support implementing the iCAST remediation and new CNCB and Regulatory Requirement
- To support the new security BAU tasks for new projects, such as SIP & XDR, Firewall Management Utility, etc.
- To support the enhancement on security tools, such as security scanning automations, PAMS script integrations, SIEM correlation rules, etc.
Requirements
A) Knowledge, Skill & Attributes
- Hands on experiences on IT security tools or applications.
- Knowledge of the DevSecOps or similar agile development
- Experiences on HK FSI, banking industry is preferred.
- Basic communications with English and Mandarin
- Following security best practices in performing tasks
B) Academic and Professional Qualification
- Degree holder (or above) which is related to Information Technology
- Fulfill HKMA ECF is preferable
C) Training and Relevant Experiences
- Fresh graduation or 1-2 years experiences on HK FSI, banking industry is preferred.
- Basic knowledge on software programming
- Basic knowledge on networking
D) Experiences on Application/Development Security is an advantage, i.e.
- Developing and maintaining software application security policies and procedures
- Developing and maintaining documentation of application security controls
- Implementing software application security controls
- Designing technical solutions to address security weaknesses
- Analyzing system services, spotting issues in code, networks and applications
