92 Cissp jobs in Hong Kong

Recruitment Consultant ｜ Information Technology - Infrastructure & Security

Our client is a leading organization and a market leader in its field. They are currently looking for a skilled Network Security Engineer to join their Security team. In this role, you will play a critical part in strengthening the organization's network security framework, implementing advanced security solutions, and ensuring seamless protection against evolving cyber threats.

• Oversee the design and implementation of security measures across hybrid cloud and on-premises environments.
• Manage firewall configurations, VPN solutions, and network security protocols.
• Collaborate with the Security Operations Center (SOC) for threat detection and incident response.
• Implement security policies for cloud environments and on-premises systems.
• Conduct vulnerability assessments and support compliance audits.
• Lead and mentor a cross-functional security team.
• Manage relationships with third-party security vendors.

• 5+ years in security operations, hybrid cloud and on-premises security.
• Strong expertise in public cloud security (AWS, Azure, GCP) and network security.
• Experience with firewall management, VPN, and proxy configurations.
• Familiarity with security operations, incident response, and compliance frameworks.
• Ability to work in a hybrid environment and participate in on-call rotations.

Click "Apply Now" to apply for this position or call Lewis Lau at for a confidential discussion. All information collected will be kept in strict confidence and will be used for recruitment purposes only.

• Entry level

• Full-time

• Information Technology
• Industries

Referrals increase your chances of interviewing at KOS International Limited by 2x

Join to apply for the Data Security Engineer role at OKX

3 days ago Be among the first 25 applicants

Job Description:

• Develop and enhance data security detection capabilities, including but not limited to DLP, data encryption and data masking;
• Continuously validate existing data security rules and models; follow up on data security incident identification, response, handling, investigation, and forensics;
• Continuously improve risk identification capabilities in data security by optimizing detection rules and models to optimize the overall detection coverage; build data asset maps; use graph detection and other techniques to trace data flows and identify sensitive data exfiltration risks.

Job Requirements:

• Major in information security, network security, or computer science; 3–5 years of relevant experience in data security;
• Familiar with the data security lifecycle, understanding the risk points and key objectives at each stage;
• Familiar with common security offense and defense techniques, with experience in building security operations and managing data security risks; strong sensitivity to data exposure risks;
• Familiar with data security products and detection methods such as DLP, UEBA, sensitive data identification, data encryption/decryption, and secure data sharing;
• Experience with enterprise-level endpoint data protection solutions; experience in endpoint security, familiarity with macOS and Linux systems, and hands-on experience in data threat modeling is a plus;
• Experience with enterprise-level big data analysis tools such as Flink, Hive, Spark, ElasticSearch, and graph technologies; hands-on experience in security data mining, analytics, or threat intelligence analysis is a plus;
• Strong logical thinking and communication skills, with a good understanding of compliance and legal considerations.

Benefits (examples of company-wide offerings mentioned):

• L&D programs and education subsidy for employees' growth and development
• Various team building programs and company events
• Wellness and meal allowance
• Comprehensive healthcare schemes for employees and dependants
• More that we love to tell you along the process!

Referrals increase your chances of interviewing at OKX by 2x

The original post includes additional role postings and location details in Hong Kong and elsewhere; this refined description focuses on the Data Security Engineer opportunity at OKX and preserves the essential responsibilities and qualifications.

Recruitment Consultant ｜ Information Technology - Infrastructure & Security

Our client is a leading organization and a market leader in its field. They are currently looking for a skilled Network Security Engineer to join their Security team. In this role, you will play a critical part in strengthening the organization's network security framework, implementing advanced security solutions, and ensuring seamless protection against evolving cyber threats.

• Oversee the design and implementation of security measures across hybrid cloud and on-premises environments.
• Manage firewall configurations, VPN solutions, and network security protocols.
• Collaborate with the Security Operations Center (SOC) for threat detection and incident response.
• Implement security policies for cloud environments and on-premises systems.
• Conduct vulnerability assessments and support compliance audits.
• Lead and mentor a cross-functional security team.
• Manage relationships with third-party security vendors.

• 5+ years in security operations, hybrid cloud and on-premises security.
• Strong expertise in public cloud security (AWS, Azure, GCP) and network security.
• Experience with firewall management, VPN, and proxy configurations.
• Familiarity with security operations, incident response, and compliance frameworks.
• Ability to work in a hybrid environment and participate in on-call rotations.

Click "Apply Now" to apply for this position or call Lewis Lau at for a confidential discussion. All information collected will be kept in strict confidence and will be used for recruitment purposes only.

• Entry level

• Full-time

• Information Technology
• Industries

Referrals increase your chances of interviewing at KOS International Limited by 2x

Join to apply for the Ubuntu Security Engineer role at Canonical

3 days ago Be among the first 25 applicants

Join to apply for the Ubuntu Security Engineer role at Canonical

Get AI-powered advice on this job and more exclusive features.

Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is very widely used in breakthrough enterprise initiatives such as public cloud, data science, AI, engineering innovation, and IoT. Our customers include the world's leading public cloud and silicon providers, and industry leaders in many sectors. The company is a pioneer of global distributed collaboration, with 1200+ colleagues in 75+ countries and very few office-based roles. Teams meet two to four times yearly in person, in interesting locations around the world, to align on strategy and execution.
The company is founder-led, profitable, and growing.
Canonical is building a team dedicated to providing security coverage across a wide range of ecosystems and environments, working to make the world a better, safer place. We are hiring an Ubuntu Security Engineer to join an industry-leading security engineering team and help protect the open source community and Ubuntu users from emerging threats. We are looking for candidates across all levels of experience, from Graduate to Senior.
As part of the Ubuntu Security Team, you will work with some of the best and brightest people in technology to monitor, triage, respond to, and document new and existing vulnerabilities in open source software. You will collaborate with internal teams and external partners to identify issues, prioritize them, and coordinate remediation.
This is an engineering-focused role that may also involve activities such as producing security assessments, building features, conducting code reviews, developing internal tools, engaging with the open source community, and participating in industry initiatives and events.
This role requires international travel at least twice a year, usually for one week. It also requires the ability to be productive in a globally distributed team through self-discipline and self-motivation.
Location: Worldwide, this is a globally remote role
The role entails

• Analyzing, fixing, and testing vulnerabilities in open source packages
• Keeping track of vulnerabilities in the Ubuntu ecosystem as they are discovered, researched, and fixed, leveraging internal tools
• Collaborating with other teams in the Ubuntu community and upstream developers, as needed, to exchange or develop vulnerability patches and ensure that Ubuntu includes the most robust security features
• Auditing source code for vulnerabilities
• Building features and tools to help teams strengthen the security of their products and contribute to the overall security of Ubuntu
  

• You have a thorough understanding of the common categories of security vulnerabilities and techniques for fixing them
• You are familiar with coordinated disclosure practices
• You are familiar with open source development tools and methodologies
• You are skilled in one or more of C, Python, Go, Rust, Java, Ruby, PHP or JavaScript/TypeScript
• You have excellent logic, problem-solving, troubleshooting, and decision-making skills
• You can clearly and effectively communicate with the team and Ubuntu community members
• Experience with Linux (Debian or Ubuntu preferred)
• Excellent interpersonal skills, curiosity, flexibility, and accountability
• Appreciative of diversity, polite, and effective in a multi-cultural, multi-national organization
• Thoughtfulness and self-motivation
• Result-oriented, with a personal drive to meet commitments
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Team Member Assistance Program & Wellness Platform
• Opportunity to travel to new locations to meet colleagues
• Priority Pass and travel upgrades for long-haul company events
  

• Seniority level Entry level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Get notified about new Security Engineer jobs in Hong Kong SAR .

Hong Kong SAR $4,800.00-$7,200.00 2 weeks ago

Hong Kong, Hong Kong SAR SGD24,000.00-SGD60,000.00 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Data Security Engineer role at OKX

3 days ago Be among the first 25 applicants

Job Description:

• Develop and enhance data security detection capabilities, including but not limited to DLP, data encryption and data masking;
• Continuously validate existing data security rules and models; follow up on data security incident identification, response, handling, investigation, and forensics;
• Continuously improve risk identification capabilities in data security by optimizing detection rules and models to optimize the overall detection coverage; build data asset maps; use graph detection and other techniques to trace data flows and identify sensitive data exfiltration risks.

Job Requirements:

• Major in information security, network security, or computer science; 3–5 years of relevant experience in data security;
• Familiar with the data security lifecycle, understanding the risk points and key objectives at each stage;
• Familiar with common security offense and defense techniques, with experience in building security operations and managing data security risks; strong sensitivity to data exposure risks;
• Familiar with data security products and detection methods such as DLP, UEBA, sensitive data identification, data encryption/decryption, and secure data sharing;
• Experience with enterprise-level endpoint data protection solutions; experience in endpoint security, familiarity with macOS and Linux systems, and hands-on experience in data threat modeling is a plus;
• Experience with enterprise-level big data analysis tools such as Flink, Hive, Spark, ElasticSearch, and graph technologies; hands-on experience in security data mining, analytics, or threat intelligence analysis is a plus;
• Strong logical thinking and communication skills, with a good understanding of compliance and legal considerations.

Benefits (examples of company-wide offerings mentioned):

• L&D programs and education subsidy for employees' growth and development
• Various team building programs and company events
• Wellness and meal allowance
• Comprehensive healthcare schemes for employees and dependants
• More that we love to tell you along the process!

Referrals increase your chances of interviewing at OKX by 2x

The original post includes additional role postings and location details in Hong Kong and elsewhere; this refined description focuses on the Data Security Engineer opportunity at OKX and preserves the essential responsibilities and qualifications.

About the Opportunity

Job Description:

• Build host-based security detection capabilities, including but not limited to malware analysis, intrusion detection rule management, threat modeling, and host behavior baseline modeling for both office and production environments;
• Continuously optimize existing host security policies and detection models; handle threat alerts and incident responses to improve overall detection coverage and accuracy;
• Optimize current host data collection and detection pipelines to enhance the quality and coverage of fundamental host security data; drive consistency and integrity between real-time and offline host data.

• Degree in information security, network security, or computer science, with 3–5 years of experience in host security;
• Familiar with security attack and defense techniques; experienced in building and operating host security systems; in-depth knowledge of intrusion methods and detection techniques for both office and production networks;
• Proficient in macOS and Linux systems, with experience in optimizing host behavior data collection and improving host data quality and integrity;
• Familiar with mainstream APT attack techniques and corresponding detection methods, capable of identifying APT intrusions or attempted attacks in office or production environments;
• Skilled in host security detection in multi-cloud environments; familiar with mainstream EDR products for both office and production networks; candidates with in-house (enterprise-side) host security construction experience are preferred;
• Experience in enterprise-level big data analytics using tools such as Flink, Hive, Spark, ElasticSearch, and Graph technologies; practical experience in using real-time and offline data for threat modeling is a plus;
• Strong logical thinking and communication skills, with solid awareness of compliance and legal considerations.
• L&D programs and education subsidy for employees' growth and development
• Various team building programs and company events
• Wellness and meal allowance
• Comprehensive healthcare schemes for employees and dependants
• More that we love to tell you along the process!

• Associate

• Full-time

• Information Technology
• Industries: Technology, Information and Media

• L&D programs and education subsidy for employees' growth and development
• Various team building programs and company events
• Wellness and meal allowance
• Comprehensive healthcare schemes for employees and dependants

We are working with a decentralised exchange which looks to innovate on providing the best of CEXs and DEXs, focusing on building a safe, simple and scalable platform for trading. They differentiate themselves by offering institutional level systems and support whilst remaining on-chain and decentralised.

We are in search of a Security Engineer to join their vibrant team, where you will play a crucial role in pinpointing risks across the organisation. Collaborating with each team, you will focus on identifying, alerting, mitigating, and preventing risks. This role offers you the chance to contribute to shaping, constructing, and pioneering security solutions in a swiftly evolving industry.

What you’ll be doing:

• Architecting, implementing, and managing comprehensive security solutions.
• Establish and enforce security policies, standards, and guidelines that comply with industry regulations and best practices.
• Participate in penetration testing and purple teaming with ongoing or new projects to ensure their security posture is at a high level.
• Monitor and respond to security incidents, ensuring quick resolution.
• Build automation and leverage security frameworks with engineers that are able to improve security and reduce friction.
• Take part in critical discussion topics, with the ability to challenge decisions and the status quo; we take collaboration and feedback seriously, believing it is one of the foundational principles of a great team.

What we’re looking for:

• Strong Information Security (InfoSec) skills, with proven experience in application security or a relevant field.
• Hands-on experience of developing, engineering, or architecting within a public cloud environment.
• Experience with engineering, using infrastructure-as-code (such as Terraform and Ansible).
• Experience with performing threat modelling exercises or a very good understanding of the methodology and ability to assess a project's risk.
• Understanding of container and DevSecOps concepts (we use DefectDojo) with CI/CD experience.
• Familiarity with blockchain technology and cryptocurrency trading platforms.

Bonus Points:

• Professional certifications such as OSCP, CISSP, CDP & CMTP.
• Experience with IT security frameworks such as SOC 2 and ISO 27001.

#LI-REMOTE

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile

Website

Working Location *

EMEA - Europe

APAC - Asia Pacific

LATIN - Latin America

UAE

Others

Do you have any Web3 experience? * Select.

Web3 Vertical Experience *

Defi

NFT

Gamefi

Infrastructure

ZK

Exchanges

VC

Chain

DePin

Accelerator

Incubator

Trading

Asset Management

Others

Any personal experience in Web3 (e.g. side project, personal investment) if no professional experience. *

Our client is a global apparel sourcing company with over 40 years of partnership experience with some of the most iconic brands in the world. Their digital infrastructure is the backbone of everything they do from vendor collaboration to supply chain operations. They are looking for a Senior Cyber Security Engineer to lead the efforts in securing sensitive data, defending against cyber threats, and ensuring compliance across international markets. This role is critical to protecting the business, enabling secure growth, and supporting the digital transformation journey.

• Designing and maintaining secure systems across cloud and on-prem environments.
• Monitor network activity and O365 services, swiftly respond to threats, and lead investigations into security incidents.
• Beyond defense, you’ll shape the security policies, conduct vulnerability assessments, and collaborate with IT and DevOps to ensure our systems are built with security at their core.
• You’ll also champion cybersecurity awareness across the company, helping every team member stay informed and protected.

• Bachelor’s degree in a related discipline with 5-8 years of cyber/ system security experience .
• Strong understanding of network and system security principles
• Experience with security tools (Microsoft Defender and Sentinel )
• Familiar with cloud security (Azure, O365 )
• Good knowledge of secure coding practices and DevSecOps principles, with good scripting skills on Python, Bash, PowerShell
• With CISSP, OSCP, or GIAC certifications is an advantage
• Good command in spoken and written Cantonese and English

This position is open to applicants residing in Hong Kong. Shortlisted applicants will be contacted within 48 hours.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Transportation, Logistics, Supply Chain and Storage

Join to apply for the Cloud and Security Engineer role at Lingnan University

1 day ago Be among the first 25 applicants

Join to apply for the Cloud and Security Engineer role at Lingnan University

Get AI-powered advice on this job and more exclusive features.

Lingnan University is one of the eight publicly funded institutions in the Hong Kong Special Administrative Region (HKSAR) and has the longest established tradition among the local institutions of higher education. It is widely recognised for providing quality education with a focus on whole-person development and conducting high-impact research for a better world. Moving forward, Lingnan University is well positioned to take lead as a comprehensive university in arts and sciences in the digital era, with impactful research and innovations.

Lingnan University offers undergraduate, taught postgraduate, and research postgraduate programmes in the Faculties of Arts, Business, Social Sciences, and the Schools of Data Science, Graduate Studies and Interdisciplinary Studies. To foster interdisciplinary collaboration and scientific progress, Lingnan University established the Lingnan University Institute for Advanced Study (LUIAS), attracting distinguished scholars from around the world to collaborate with its faculty and students. With traditional strengths in arts, business, social sciences, and interdisciplinary studies, the University aims to equip students with practical knowledge and critical thinking skills to thrive in the future. Subsequent to the establishment of the School of Data Science and LUIAS, Lingnan University is transforming into a hub for global leaders to develop and promote human-centric technology and social policies. Further information about Lingnan University is available at

Applications are now invited for the following post:

Cloud and Security Engineer

(Post Ref.: 25/44)

Responsibilities

• Design, implement, and maintain security and hybrid IT infrastructures, including but not limited to firewalls, VPNs, Secure MTAs, Endpoint Protection Systems, DLP, 2FA, Cloud Infrastructure, and Directory Services
• Deploy and manage the containerised environment, such as Docker Engine, Kubernetes, GitLab, or similar platforms
• Manage, analyse, and address security and systems incidents
• Plan, evaluate and propose products for security and hybrid IT infrastructure solutions
• Provide in-depth technical support and operation of security, Cloud, M365, Active Directory and Container platforms
• Prepare detailed configurations, documentation and operation guide, and liaise with vendors to set up the security and hybrid IT infrastructure
• May be required to work in shifts and irregular hours
• Perform any other duties as requested by supervisor(s)

Requirements

• A Bachelor's Degree or above in Computer Science, Information Technology, Information Engineering or related disciplines
• At least 5 years of working experience in IT, with at least 3 years of technical expertise and solid skillsets in Network Security and Cloud Infrastructure
• Experience in managing the cybersecurity of campus IT infrastructure, including Wi-Fi, network segmentation, Active Directory, remote access, a multi-cloud environment, and SSO/MFA, among others
• Hands-on experience in Firewall, EDR, SIEM, Secure Email Gateway, Network Access Control, WAF, IDS/IPS and MSS handling
• Proficiency in Microsoft technologies, including on-premises systems, M365, Azure, and related cloud services, and integrating AI solutions to enhance security and cloud operations
• Experience with Docker, Container, Kubernetes and CI/CD
• A strong understanding of cybersecurity concepts and technologies, data protection, SSO/MFA, operating systems and cloud security
• Strong organisational, analytical and problem-solving skills
• Proficient in written and verbal English
• Good customer service skills and positive working attitude
• Self-motivated with skills in planning and executing various small projects
• Able to collaborate with colleagues proactively to manage project lifecycles effectively

Candidates with less/more experience will also be considered for appointment at the relevant rank.

Salary and Fringe Benefits

The rank and commencing salary will be commensurate with qualifications and experience. Fringe benefits, where applicable, include annual leave, medical and dental benefits, mandatory provident fund and gratuity.

Application Procedure (online application only)

Please click "Apply" to submit your application. Personal data collected will be used for recruitment purposes only .

We are an equal opportunities employer . Review of applications will continue until the post is filled. Qualified candidates are advised to submit their applications early for consideration.

The University reserves the right not to make an appointment for the post advertised, or to fill the post by invitation or by search. We regret that only shortlisted candidates will be notified .

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Higher Education

Referrals increase your chances of interviewing at Lingnan University by 2x

New Territories, Hong Kong SAR 1 week ago

New Territories, Hong Kong SAR 3 weeks ago

Islands District, Hong Kong SAR 10 months ago

Shek Pik, Hong Kong SAR HK$30,000.00-HK$40,000.00 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.