IT Security Engineer - Infrastructure & Security

Our client, a Commercial bank, is looking to hire an IT Security Engineer for their Infrastructure & Security team.

Responsibilities:

• Support regular security assessments, including security scanning and handling SPAM/Phishing incidents
• Support and follow up on the TVM process
• Assist with administration and documentation for new security-related projects (IAM, Cloud Adoption, STDB, etc.)
• Support iCAST remediation and new CNCB and Regulatory Requirement implementation
• Support new security BAU tasks for projects like SIP & XDR, Firewall Management Utility
• Enhance security tools, including security scanning automations, PAMS script integrations, and SIEM correlation rules

Requirements:

• Hands-on experience with IT security tools or applications
• Knowledge of DevSecOps or similar agile development
• Experience in Hong Kong FSI or banking industry preferred
• Basic communication skills in English and Mandarin
• Adherence to security best practices
• Degree in Information Technology or related field
• HKMA ECF fulfillment preferred
• Fresh graduate or 1-2 years of experience in HK FSI or banking industry
• Basic knowledge of software programming and networking

Advantages:

• Experience in Application/Development Security, including:
  • Developing and maintaining software application security policies and procedures
  • Documenting application security controls
  • Implementing software application security controls
  • Designing technical solutions for security weaknesses
  • Analyzing system services and identifying issues in code, networks, and applications

This role offers an opportunity to work in a dynamic banking environment, focusing on critical IT security tasks and projects. The ideal candidate will have a strong foundation in IT security principles and a willingness to learn and adapt to new technologies and methodologies in the field.