62 Cybersecurity Manager jobs in Hong Kong

Join to apply for the Cybersecurity Manager role at Michael Page .

3 days ago Be among the first 25 applicants.

Our client is a large organization in the Leisure, Travel & Tourism industry. Headquartered in Quarry Bay, they are known for their commitment to innovation and excellence, and they are consistently recognized as a leader in their field. With a global reach and an inclusive, collaborative culture, they strive to create a work environment that fosters growth and development.

As a Cybersecurity Manager, your main responsibilities will include:

• Developing and implementing effective cybersecurity strategies
• Managing the company's digital assets and protecting them from cyber threats
• Coordinating with different departments to ensure cybersecurity protocols are followed
• Identifying potential security vulnerabilities and taking proactive steps to mitigate risks
• Conducting regular audits to ensure security measures are effective
• Providing training and guidance to staff on cybersecurity best practices
• Staying updated on the latest cybersecurity trends and threats
• Reporting regularly on the status of cybersecurity within the company

A successful Cybersecurity Manager should have:

• A degree in Information Technology, Computer Science, or a related field
• Expertise in developing and implementing cybersecurity strategies
• Knowledge of current cybersecurity trends and threats
• Strong problem-solving abilities and attention to detail
• Excellent communication and leadership skills

• A competitive salary package, estimated between HKD 648,000 and HKD 792,000
• Standard benefits package
• An inclusive and collaborative work culture
• Opportunities for professional growth and development
• Work in the bustling area of Quarry Bay

If you are a cybersecurity professional looking to take the next step in your career, we invite you to apply for this exciting opportunity in the Leisure, Travel & Tourism industry.

Alexis Wee

Quote job ref: JN-

4 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

• Act as the primary cybersecurity single point of contact with the customer, translating requirements into ITOC-executable SOPs/runbooks, tickets, and monitoring metrics.
• Lead day-to-day security operations enablement for ITOC, leveraging hands-on expertise in SIEM, EDR, PAM, and NGFW to operationalize controls.
• Serve as the escalation authority for end-user security requests/incidents beyond SOP, ensuring rapid containment, evidence preservation, and service continuity.
• Coordinate with internal network, firewall, identity, data center ops, and compliance teams to ensure delivery aligns with business and regulatory objectives.
• Translate customer policies/controls into ITOC SOPs, runbooks, detection rules, dashboards, and ticket workflows in SIEM/SOAR and ITSM.
• Define RACI, remediation SLAs, and MTTR targets; drive continuous improvement through metrics reviews.
• Design, implement, and operationalize security solutions including:
• Next‑Gen Firewall and VPN segmentation (SSL/IPsec, client certificate-based auth, and microsegmentation baselines).
• SIEM onboarding and content engineering (log ingestion, parsing, enrichment via REST API, correlation rules, and dashboards for anomaly detection).
• EDR/XDR operations and use-case lifecycle (policy tuning, detection engineering, and response playbooks).
• Privileged Access Management: policy hardening, vault operations, and operator runbooks.
• Optimize controls for HPC (high-throughput telemetry ingestion, tenant isolation at network and identity layers, bastion/privileged session controls, image/baseline governance, and secure job sandboxes).
• Own escalations beyond ITOC SOP: triage, containment, forensics handoff, root cause and corrective action (RCCA), and stakeholder communications.
• Lead tabletop and DR exercises; maintain IR playbooks integrated with SIEM, EDR, PAM, and firewall workflows.

• Bachelor’s degree in Information Security/IT or related field.
• 3+ years of IT/security engineering and operations experience, including:
• SIEM onboarding/content.
• EDR/XDR operations.
• NGFW/VPN configuration and policy management.
• PAM implementation and operations, including DR configuration.
• Exposure to government/regulated environments and financial services security use cases is a plus.
• Solid grasp of risk management, incident response, vulnerability remediation workflows, and security architecture fundamentals.
• Ability to convert compliance/control requirements into actionable SOPs, dashboards, alerts, and ITSM processes; familiar with ITIL/ITSM.
• Comfortable with Agile/Waterfall delivery; tools such as Jira/Confluence/MS Project.
• Understanding of HPC/security considerations: network segmentation for high-throughput fabric, GPU/accelerator tenant isolation, secure remote access, and image baseline control.
• Certifications (aligned to CV; additional are a plus):
• CISSP, CISM, PMP, ISO 27001 LA, CEH, CCSP, technology vendor certification (preferred).
• Soft Skills
• Clear communicator with both technical and non-technical stakeholders; capable trainer for frontline operators.
• Strong analytical and problem-solving skills; calm under pressure with sound incident decision-making.
• Proficient in English and Chinese; Cantonese advantageous.
• Project-driven with on-call/off-hours support for changing windows and major incidents.
• Onsite presence at Supercomputing Center and China Mobile facilities as required.

• Large-scale data center/cloud or HPC environments, including tenant isolation and cross-domain data flow controls.
• Engagements with government/FSI clients and regulated environments, including dashboard/reporting and control audits.

Interested parties please apply in full resume with current and expected salary by e-mail to . Please indicate the reference in the subject line.

All personal data collected will be used for recruitment and employment related purpose only.

• Mid-Senior level

• Full-time

• Information Technology and Management
• Industries: Telecommunications and Technology, Information and Media

Referrals increase your chances of interviewing at China Mobile International Limited by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

4 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

• Act as the primary cybersecurity single point of contact with the customer, translating requirements into ITOC-executable SOPs/runbooks, tickets, and monitoring metrics.
• Lead day-to-day security operations enablement for ITOC, leveraging hands-on expertise in SIEM, EDR, PAM, and NGFW to operationalize controls.
• Serve as the escalation authority for end-user security requests/incidents beyond SOP, ensuring rapid containment, evidence preservation, and service continuity.
• Coordinate with internal network, firewall, identity, data center ops, and compliance teams to ensure delivery aligns with business and regulatory objectives.
• Translate customer policies/controls into ITOC SOPs, runbooks, detection rules, dashboards, and ticket workflows in SIEM/SOAR and ITSM.
• Define RACI, remediation SLAs, and MTTR targets; drive continuous improvement through metrics reviews.
• Design, implement, and operationalize security solutions including:
• Next‑Gen Firewall and VPN segmentation (SSL/IPsec, client certificate-based auth, and microsegmentation baselines).
• SIEM onboarding and content engineering (log ingestion, parsing, enrichment via REST API, correlation rules, and dashboards for anomaly detection).
• EDR/XDR operations and use-case lifecycle (policy tuning, detection engineering, and response playbooks).
• Privileged Access Management: policy hardening, vault operations, and operator runbooks.
• Optimize controls for HPC (high-throughput telemetry ingestion, tenant isolation at network and identity layers, bastion/privileged session controls, image/baseline governance, and secure job sandboxes).
• Own escalations beyond ITOC SOP: triage, containment, forensics handoff, root cause and corrective action (RCCA), and stakeholder communications.
• Lead tabletop and DR exercises; maintain IR playbooks integrated with SIEM, EDR, PAM, and firewall workflows.

• Bachelor’s degree in Information Security/IT or related field.
• 3+ years of IT/security engineering and operations experience, including:
• SIEM onboarding/content.
• EDR/XDR operations.
• NGFW/VPN configuration and policy management.
• PAM implementation and operations, including DR configuration.
• Exposure to government/regulated environments and financial services security use cases is a plus.
• Solid grasp of risk management, incident response, vulnerability remediation workflows, and security architecture fundamentals.
• Ability to convert compliance/control requirements into actionable SOPs, dashboards, alerts, and ITSM processes; familiar with ITIL/ITSM.
• Comfortable with Agile/Waterfall delivery; tools such as Jira/Confluence/MS Project.
• Understanding of HPC/security considerations: network segmentation for high-throughput fabric, GPU/accelerator tenant isolation, secure remote access, and image baseline control.
• Certifications (aligned to CV; additional are a plus):
• CISSP, CISM, PMP, ISO 27001 LA, CEH, CCSP, technology vendor certification (preferred).
• Soft Skills
• Clear communicator with both technical and non-technical stakeholders; capable trainer for frontline operators.
• Strong analytical and problem-solving skills; calm under pressure with sound incident decision-making.
• Proficient in English and Chinese; Cantonese advantageous.
• Project-driven with on-call/off-hours support for changing windows and major incidents.
• Onsite presence at Supercomputing Center and China Mobile facilities as required.

• Large-scale data center/cloud or HPC environments, including tenant isolation and cross-domain data flow controls.
• Engagements with government/FSI clients and regulated environments, including dashboard/reporting and control audits.

Interested parties please apply in full resume with current and expected salary by e-mail to . Please indicate the reference in the subject line.

All personal data collected will be used for recruitment and employment related purpose only.

• Mid-Senior level

• Full-time

• Information Technology and Management
• Industries: Telecommunications and Technology, Information and Media

Referrals increase your chances of interviewing at China Mobile International Limited by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

2 days ago Be among the first 25 applicants

Note: This refined description retains the core responsibilities and requirements while removing extraneous content.

• Participate in the security construction of cloud infrastructure, including landing zone, network design, access control, and intrusion detection. Includes Cloud Security, Network Security, End Point Security, Firewall, WAF, NDR/XDR, etc.
• Develop network security architecture and network access control standards, promoting the implementation of robust security solutions.
• Participate in security operations from a network/cloud security perspective, continuously monitor and optimize network/cloud security operation maturity.
• Conduct regular security risk assessments, analyze system weaknesses and propose improvement strategies; perform regular cloud/network security control reviews from the first-line perspective.
• Participate in the development and implementation of cloud, network and security strategies and policies.

Requirements:

• Degree holder in Electronic Engineering or Information Technology or related disciplines
• Minimum 2-3 years’ relevant experience in cloud security or Network Security solution experience
• Familiarity with common cloud services and security systems such as AWS, Kubernetes, WAF, Cloudflare, Akamai, Hillstone and Palo Alto products
• Proficiency in understanding and addressing common Web and system security vulnerabilities
• Self motivated, customer oriented and able to work under pressure
• Industry certifications like CISA, CISSP, or CCNP Security are advantageous
• Familiarity with security standards such as ISO27001, PCI DSS, and NIST
• Proficiency in spoken and written Chinese and English

Personal information collected is strictly for recruitment purpose only.

• Associate

• Full-time

• Information Technology

• Banking

We’re committed to fair and equal opportunity employment.

2 days ago Be among the first 25 applicants

Note: This refined description retains the core responsibilities and requirements while removing extraneous content.

• Participate in the security construction of cloud infrastructure, including landing zone, network design, access control, and intrusion detection. Includes Cloud Security, Network Security, End Point Security, Firewall, WAF, NDR/XDR, etc.
• Develop network security architecture and network access control standards, promoting the implementation of robust security solutions.
• Participate in security operations from a network/cloud security perspective, continuously monitor and optimize network/cloud security operation maturity.
• Conduct regular security risk assessments, analyze system weaknesses and propose improvement strategies; perform regular cloud/network security control reviews from the first-line perspective.
• Participate in the development and implementation of cloud, network and security strategies and policies.

Requirements:

• Degree holder in Electronic Engineering or Information Technology or related disciplines
• Minimum 2-3 years’ relevant experience in cloud security or Network Security solution experience
• Familiarity with common cloud services and security systems such as AWS, Kubernetes, WAF, Cloudflare, Akamai, Hillstone and Palo Alto products
• Proficiency in understanding and addressing common Web and system security vulnerabilities
• Self motivated, customer oriented and able to work under pressure
• Industry certifications like CISA, CISSP, or CCNP Security are advantageous
• Familiarity with security standards such as ISO27001, PCI DSS, and NIST
• Proficiency in spoken and written Chinese and English

Personal information collected is strictly for recruitment purpose only.

• Associate

• Full-time

• Information Technology

• Banking

We’re committed to fair and equal opportunity employment.

Join to apply for the Group IT & Cybersecurity Manager (Hands-on, all-round) role at Michael Page

3 days ago Be among the first 25 applicants

Join to apply for the Group IT & Cybersecurity Manager (Hands-on, all-round) role at Michael Page

• Hands-on and all-round IT cybersecurity Manager role
  
  
  

• Regional role
• Hands-on and all-round IT cybersecurity Manager role
  
  
  

• University degree in Information Security, Computer Science, or related field
• Minimum 7 years of experience in cybersecurity, with a strong track record in IT security strategy and execution
• Professional certifications such as CISSP, CISM, PCI ISA, or OSCP
• Hands-on experience with a wide range of security tools and technologies
• Strong knowledge of application and infrastructure security, cloud platforms (Office 365, AWS, Azure, GCP), and secure software development
• Familiarity with data privacy and PCI compliance requirements
• Experience managing teams and working in regional or global environments
• Strong communication skills in both English and Chinese
• Analytical, self-driven, and passionate about leveraging technology to solve complex security challenges
  
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology and Engineering
• Industries Personal Care Product Manufacturing, Retail Groceries, and Food and Beverage Manufacturing

Referrals increase your chances of interviewing at Michael Page by 2x

Get notified about new Information Technology Security Manager jobs in Hong Kong SAR .

Sha Tin District, Hong Kong SAR 6 days ago

Wan Chai District, Hong Kong SAR 2 weeks ago

Kwun Tong District, Hong Kong SAR 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Group IT & Cybersecurity Manager (Hands-on, all-round) role at Michael Page

3 days ago Be among the first 25 applicants

Join to apply for the Group IT & Cybersecurity Manager (Hands-on, all-round) role at Michael Page

• Hands-on and all-round IT cybersecurity Manager role
  

• Regional role
• Hands-on and all-round IT cybersecurity Manager role
  

• University degree in Information Security, Computer Science, or related field
• Minimum 7 years of experience in cybersecurity, with a strong track record in IT security strategy and execution
• Professional certifications such as CISSP, CISM, PCI ISA, or OSCP
• Hands-on experience with a wide range of security tools and technologies
• Strong knowledge of application and infrastructure security, cloud platforms (Office 365, AWS, Azure, GCP), and secure software development
• Familiarity with data privacy and PCI compliance requirements
• Experience managing teams and working in regional or global environments
• Strong communication skills in both English and Chinese
• Analytical, self-driven, and passionate about leveraging technology to solve complex security challenges
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology and Engineering
• Industries Personal Care Product Manufacturing, Retail Groceries, and Food and Beverage Manufacturing

Referrals increase your chances of interviewing at Michael Page by 2x

Get notified about new Information Technology Security Manager jobs in Hong Kong SAR .

Sha Tin District, Hong Kong SAR 6 days ago

Wan Chai District, Hong Kong SAR 2 weeks ago

Kwun Tong District, Hong Kong SAR 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

2 days ago Be among the first 25 applicants

We are seeking a highly capable and experienced professional with approximately 10 years of experience in cybersecurity governance, and IT audit and security assessment support. This role focuses on leading security assessments in collaboration with technical teams, reviewing and translating technical findings into clear and impactful reports for clients, regulators, and senior management. The ideal candidate will possess strong analytical skills, excellent communication abilities, and a solid understanding of security controls across various technology domains.

Your Role

• Lead and coordinate security assessments across infrastructure, applications, and cloud environments, working closely with technical SMEs.
• Interface with technical teams to understand control implementation and translate findings into governance insights.
• Prepare high-quality security reports and presentations tailored for client and senior stakeholders.
• Support responses to client and regulatory security inquiries, ensuring accuracy, clarity, and timely delivery.
• Support the development of security reporting and risk metrics
• Contribute to the development and refinement of security policies, standards, and procedures.
• Support audit and assessment activities, including evidence collection and coordination with internal teams.
• Promote security awareness and contribute to training initiatives across the organization.

To Succeed in this Role

• Minimum 10 years of experience in cybersecurity governance, technology risk, or audit-related roles.
• Strong understanding of security controls across infrastructure, application, and cloud domains.
• Proven ability to work with technical teams and translate technical content into business-friendly reporting.
• Experience in preparing client-facing documentation and presentations.
• Excellent written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST, CIS).
• Relevant certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or equivalent are preferred.

Preferred Attributes

• Experience in regulated industries such as finance, healthcare, or insurance.
• Strong stakeholder engagement and coordination skills.
• Detail-oriented with a proactive and structured approach to governance.
• Familiarity with GRC

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Information Security Specialist jobs in Hong Kong, Hong Kong SAR .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

2 days ago Be among the first 25 applicants

We are seeking a highly capable and experienced professional with approximately 10 years of experience in cybersecurity governance, and IT audit and security assessment support. This role focuses on leading security assessments in collaboration with technical teams, reviewing and translating technical findings into clear and impactful reports for clients, regulators, and senior management. The ideal candidate will possess strong analytical skills, excellent communication abilities, and a solid understanding of security controls across various technology domains.

Your Role

• Lead and coordinate security assessments across infrastructure, applications, and cloud environments, working closely with technical SMEs.
• Interface with technical teams to understand control implementation and translate findings into governance insights.
• Prepare high-quality security reports and presentations tailored for client and senior stakeholders.
• Support responses to client and regulatory security inquiries, ensuring accuracy, clarity, and timely delivery.
• Support the development of security reporting and risk metrics
• Contribute to the development and refinement of security policies, standards, and procedures.
• Support audit and assessment activities, including evidence collection and coordination with internal teams.
• Promote security awareness and contribute to training initiatives across the organization.

To Succeed in this Role

• Minimum 10 years of experience in cybersecurity governance, technology risk, or audit-related roles.
• Strong understanding of security controls across infrastructure, application, and cloud domains.
• Proven ability to work with technical teams and translate technical content into business-friendly reporting.
• Experience in preparing client-facing documentation and presentations.
• Excellent written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST, CIS).
• Relevant certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or equivalent are preferred.

Preferred Attributes

• Experience in regulated industries such as finance, healthcare, or insurance.
• Strong stakeholder engagement and coordination skills.
• Detail-oriented with a proactive and structured approach to governance.
• Familiarity with GRC

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Information Security Specialist jobs in Hong Kong, Hong Kong SAR .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.