Cybersecurity Specialist

Our client is a well-known statutory monetary body in Hong Kong, who is looking for seasoned Cybersecurity Specialist who support PAM, VM, , network detection and response, security architecture and engineering.

• Bachelor’s or above degree in Computer Science, Engineering or related field.
• At least 7+ years of experience in cybersecurity consulting, operations, solution implementations, or related technology projects. Candidates with more experience will be considered for senior specialist/manager roles.
• Proven experience in implementing cybersecurity solutions, including Identity and Access Management (IAM), Privileged Access Management (PAM), Secret Management Tools, or identity threat detect and response (ITDR), with knowledge in AI and machine learning would be a definite advantage.
• Cybersecurity certifications such as CISSP, CISP, or CISA, are highly preferred.
• In-depth knowledge of IT security frameworks and standards such as ISO 27001, NIST Cybersecurity Framework, Digital Policy Office (DPO) IT Security Policy, and Cybersecurity Law of the People’s Republic of China.
• Strong understanding of computer systems, including operating systems, databases, network, infrastructure, and cloud computing. 
• Analytical thinker with the ability to understand, visualize, analyse, and resolve difficult issues.
• Experienced with cloud computing platforms such as AWS or Azure, and DevSecOps practices and tools such as Jenkins, Docker, or Kubernetes.
• Hands-on experience with system implementations and operations, including system hardening, vulnerability and patch management, system architecture and infrastructure design.
• Excellent interpersonal, communication, writing, presentation skills, organizational and time management skills, with ability to work independently in a fast-paced environment and build strong relationship with stakeholders

• Develop, maintain and fine-tune system operating procedures, including back-up & disaster recovery, vulnerability, update & patch management, system maintenance and monitoring and audit.
• Serve as a Subject Matter Expert to support the research, design, procurement, implementation, operationalization, and optimization of new and revamp of the cybersecurity solutions.
• Participate in the system development lifecycle (SDLC), such as architecture and infrastructure design, technical requirement and operation documentation, technical and user testing, user training, maintenance and support.
• Participate in system integration developments and administer, support and troubleshoot cybersecurity Systems.
• Identify and mitigate security-related incidents, perform vulnerability assessments, support penetration tests, and provide recommendations for improvements. 
• Support integration of target applications with Privilege Access Management (PAM) solutions and execute secure onboarding of new applications into the PAM system.
• Monitor and triage vulnerability scan results on a regular basis and prioritize vulnerabilities based on risk severity.
• Work closely with technical vendors and internal stakeholders to ensure compliance requirements are addressed and security solutions are implemented effectively.
• Coordinate and collaborate closely with IT and business users to ensure successful enablement of cybersecurity solutions.
• Stay up-to-date with emerging trends and technologies in IT security and make recommendations for their adoptions.