Job Description: 

• Create and maintain security policies, procedures, and guidelines. Develop and implement robust security controls to address cyber risks.

• Plan and execute cybersecurity projects to achieve roadmap. Manage system migrations. Maintain necessary documentation.

• Run various security operations. Administer tools such as Firewall, IDS/IPS, NDR, EDR, PAM, DLP, SIEM, SOAR, SASE, vulnerability scanners. Develop and maintain security baselines.

• Assist in incident response process.

• Perform regular vulnerability scanning and risk assessments to identify potential weaknesses. Prioritize findings with system owners to ensure effective remediation.

• Collaborate with internal or external parties to conduct required assessments such as penetration tests, compliance reviews, audits. Follow through on findings and recommendations to close out all gaps.

• Conduct cybersecurity training and phishing exercise to improve organizational awareness. Monitor the latest security threats, vulnerabilities, and technology trends.

Job Requirements: 

• Degree holders with keen interest in cybersecurity or technology.

• Minimum 10 years’ experience in technology industries with at least 5 years in related security roles.

• Self-motivated and able to work independently. Strong problem solving, project management, communication and interpersonal skills

• Good command of written and spoken English and Chinese.

• Certification in cybersecurity such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), ISO 27001 Lead Auditor, PCI-DSS Qualified Security Assessor (QSA) is preferred.

• Hands-on experience in full-cycle security product implementation, vulnerability management, penetration testing, threat intelligence, incident response, or compliance is highly preferred.

*This position is part of the opportunities available at our GBA Event. Attend the event to connect with hiring managers and explore your next career move.