What Jobs are available for Cybersecurity Specialist in Hong Kong?

Take this challenge if you are /plan to transform your role into a cybersecurity professional

We aim to:

• Protect People, Process, and Technology of the company.
• Facilitate transformation and improve business efficiency.

What key exposure will you gain?

1. Enterprise security solutions

2. AI-powered security solutions

3. Leverage a leading SOC to defend the company

4. Intelligence based Threat Hunting

5. Improve threat detection and response capability with the MITRE ATT&CK framework

6. Managed Detection Response

7. Facilitate a Group Level security program (Risk based)

8. Risk assessment and audit

9. Compliance and Regulatory e.g. Privacy and data protection

10. Pentesting
11. Red Team/ Blue Team
12. IT audit

5. Cyber Threat and Vulnerability Management

Key Duties:

• Security operations, incident response and their processes improvement .
• Manage security controls and adopt new security solutions to counter latest cyber threats continuously .
• Conduct risk assessment/ architecture & configuration review on projects e.g. business solutions.
• Ensure sufficient controls in place before projects rollout.
• Enforce good cyber hygiene and conduct cybersecurity awareness program.
• Develop and maintain cyber security policy, standards and guidelines.
• Cyber Threat and Vulnerability Management.
• Vendor management.

Requirements:

• Degree in Computer Science, Information Technology or other related disciplines.
• 5 years solid experience in cyber security related areas.
• Hands-on knowledge on some of below: new technologies, risk management, security solutions/controls and attack/defense techniques. (e.g. AI, IoT, Linux/Windows, Active Directory, Mobility, Cloud, network/application firewalls, IDS/IPS, load balancers, SSL VPN, end-point protection suites, DLP, DDoS, APT, encryption technologies, ransomware, security standards, etc.)
• Holder of cybersecurity certificate is highly preferred e.g, CISSP or CCSP.
• Good interpersonal skills, able to communicate with people with both IT and non-IT background.
• Self-motivated, disciplined and detail oriented.
• Possess good common sense, sound judgment and the mindset and capability to balance conflicting interests.
• Fluency in written and spoken English & Cantonese.
• Candidates with less experience will be considered for the Senior IT Analyst position.

We offer 5-Day work week with a competitive and comprehensive remuneration package including Chinese New Year bonus, discretionary bonus, transport subsidy, employer topped-up MPF contributions, medical benefits (including family members), voluntary dental coverage (including family members), life insurance, birthday leave, extra annual leave, marriage leave, maternity leave, paternity leave, newborn baby gift, sports centre and free shuttle bus.

Interested parties please apply with full resume detailing experience, qualifications and expected salary by post, by e-mail or click "Quick Apply".

By post: People and Culture (Recruitment Team), 6/F North Office Block, SuperTerminal 1, Hong Kong International Airport, HK

By email:

Please quote the above reference in your application. To know more about our company, please visit our website

Applicants not invited for interview within four weeks should consider their applications unsuccessful. Applicants' personal data collected will only be used for the sole purpose of recruitment. The data of unsuccessful applicants will be destroyed within six months.

• Lead the investigation and resolution of complex security incidents, serving as the primary escalation point for critical breaches.
• Create and implement robust cybersecurity protocols
• Perform vulnerability assessments and suggest effective countermeasures
• Explore and advocate for innovative security tools and methods
• Train employees on cybersecurity best practices
• Partner with IT, DevOps and cross-functional teams to maintain secure system setups

• Bachelor's Degree in a relevant field with 5+ years of security experience
• Good knowledge in Microsoft Defender, Sentinel, Azure Cloud and O365's cloud security
• Familiar with DevSecOps principles and skilled in scripting with Python, Bash, or PowerShell
• Comfortable collaborating across diverse cultures

Responsibilities:

• Help with developing, updating, and maintaining cybersecurity measures
• Run vulnerability scans and assist with reporting results
• Support the coordination and delivery of cybersecurity awareness programs
• Provide basic technical support to the security team
• Work with team members to review and suggest improvements for Security Operations
• Monitor security systems and respond to routine alerts with guidance
• Learn about new security threats and emerging technologies
• Carry out additional assigned tasks as needed

Requirements:

• Degree or diploma in computer science, information technology, or a related discipline
• Some programming knowledge is helpful but not required
• Interest in information security, networks, Windows, Linux, and cloud platforms is beneficial
• Willingness to learn and ability to work collaboratively
• Recent graduates and motivated candidates are encouraged to apply

Why join us

Forvis Mazars is a leader in audit, tax and advisory services worldwide, operating across 100+ countries and territories. Join us to grow your career through global opportunities, diverse projects, and continuous learning. Belong to a supportive environment where your unique perspective is valued, and success comes from teamwork. Impact with your bold ideas and help drive us forward.

As the financial services consulting team in Hong Kong, we provide integrated solutions to financial institutions to help them anticipating change in a complex and volatile environment and meeting challenges of increasingly stringent regulations. We are seeking a Cybersecurity Specialist who is passionate about cybersecurity within the financial services sector. Working with our financial services clients you will gain significant exposure to clients operating in complex environments. With the support of partners, directors, and managers, you will be expected to support to an increasing in demand for our FS consulting services.

What You Can Expect

In your role as a Cybersecurity Specialist, you will:

• Provide expert advice on security frameworks and best practices. Develop and implement cybersecurity strategies tailored to financial institutes and collaborate with clients to enhance their cyber security posture and compliance with regulations.
• Conduct risk assessments, vulnerability analyses, penetration testing and/or attack simulation to identify potential threats.
• Monitor and respond to security incidents, ensuring rapid remediation.
• Stay updated on emerging threats, technologies, and regulatory changes. Conduct training and awareness programs for clients and internal teams.
• Prepare and present reports on cyber security status and improvements.
• Conduct detailed penetration tests and vulnerability assessments across various IT systems within financial institutions, including but not limited to systems handling virtual assets.
• Develop security testing plans that are tailored not only to traditional financial systems but also to emerging technologies associated with virtual assets, such as blockchain.
• Collaborate with clients to assess and enhance their cybersecurity measures, with a particular focus on technologies involved in the management and transaction of virtual assets.
• Perform IT and security assessments based on regulatory requirements from bodies such as HKMA, SFC etc., ensuring compliance while addressing specific security concerns.
• Engage directly with client stakeholders, providing clear communication regarding security vulnerabilities, implications, and strategic recommendations.
• Maintain up-to-date knowledge of the latest cybersecurity threats, regulatory changes, and advancements in technology impacting both traditional financial services and the virtual assets sector.

Who We Are Looking For

• A bachelor's degree in Information Systems, Computer Science, Engineering, or a related field.
• 2-5 years of experience in cybersecurity, advantage with specific expertise in penetration testing and/ or simulation attacks. Candidate with more experiences will be considered for a senior role.
• Experience with Big4 or similar consulting firms. Experience in virtual assets, blockchain technology, or related fields is highly preferred.
• Relevant industry certification such as CISM, CISSP. Additional certifications in cybersecurity or blockchain technology, such as OSCP, OSCE, OSEE, GPEN, CREST, are advantageous.
• Demonstrated ability to think analytically and solve complex problems.
• Excellent interpersonal and communication skills, capable of engaging effectively with both technical and non-technical stakeholders.
• Proficiency in English; fluency in Cantonese and Putonghua is highly preferred.
• Advanced skills in report writing and the creation of professional, insightful presentations and reports.
• Familiar with security standard references such as OWASP, SANS, NIST.
• Knowledge and experience of security testing methods and techniques, including network, operating system and application system configuration review and internal/external penetration testing.
• Knowledge and experience in web and mobile application security review and testing are desirable.

What we offer

We recognise that rewards are important to you. On top of the basic salary you will be receiving, we offer a range of staff caring benefits and policies including medical and dental insurance, life insurance, a 5-day working week, discretionary performance bonus, birthday leave, and marriage leave. Please apply with a detailed resume, contact numbers, current salary, expected salary, and availability in strict confidence.

All applications received will be used strictly for selection purpose only.

At Lalamove, we believe in the power of community. Millions of drivers and customers use our technology every day to connect with one another and move things that matter. Delivery is what we do best and we ensure it is always fast and simple. Since 2013, we have tackled the logistics industry head on to find the most innovative solutions for the world's delivery needs. We are full steam ahead to make Lalamove synonymous with delivery and on a mission to impact as many local communities as we can. We have massively scaled our efforts across Asia and now have our sights on taking our best in class technology to the rest of the world. And we need your help to get us there

We're looking for a Senior Network and Security Analyst to join our growing cybersecurity team in Hong Kong. You'll be pivotal in supporting the growing anti-cyber arracks infrastructure and tools use in our upcoming new markets.

What you'll do:

• Perform security and network infrastructure deployment, maintenance, support and troubleshooting;
• Implement, and optimize cybersecurity solutions (e.g., SIEM, EDR, DLP, CVM, PAM, IAM) in an enterprise environment;
• Conduct vulnerability management operations, including scheduling regular scans for systems, network infrastructure, applications, and endpoints;
• Strengthen cybersecurity defenses, incident response readiness, and recovery procedures;
• Perform security and risk analyses, prepare incident reports for critical events, and present findings to management;
• Support security hardening initiatives, security alert configurations, and other technical implementations;

What you'll need:

• Bachelor's degree in Computer Science, IT, Cybersecurity, or a related field.
• Minimum 5 years of hands-on network and cybersecurity experience
• Technical Expertise in NGFW, WAF, IPS/IDS, NAC, EDR, anti-virus, and system/network hardening.
• Hands-on experience of SIEM & incident handling such as Elasticsearch
• Good knowledage on Linux, Windows, networking, and cloud platforms (AWS / Azure).
• Strong understanding of network security principles, including firewalls, SASE, IPS, , and encryption, Anti-DDoS platform such as Cloudflare and Akamai
• Certifications (Preferred) such as CISSP, CISM, CISA, OSCP, ITIL, CCSA, or equivalent.
• Excellent problem-solving abilities, teamwork, adaptability under pressure, and strong communication skills.
• Fluency in English; Chinese or Mandarin is a plus.

Are you dedicated to excellence in your work? Do you excel in a team-oriented environment, upholding integrity and responsibility while embracing opportunities for growth? We welcome you to join a dynamic team committed to outstanding performance.

We are a globally renowned organization in the hospitality sector, celebrated for delivering unparalleled experiences in top-tier locations worldwide. Our focus on innovation and exceptional service fuels our success, and we are looking for a skilled professional to enhance our cybersecurity team.

Position Title: Security Analyst

Position Objective:

The Security Analyst will contribute to global cybersecurity efforts by overseeing, evaluating, and strengthening security measures across on-premises, cloud, and mobile platforms. This role will partner with security engineers, architects, and IT teams to identify, analyze, and mitigate threats, ensuring compliance and robustness throughout our digital infrastructure.

Key Responsibilities:

• Oversee the performance, reliability, stability, and compliance of security systems, working with business units to address deficiencies
• Identify and respond to network irregularities and malware incidents across various security tools
• Administer and monitor Data Loss Prevention (DLP) solutions for networks, hosts, and cloud environments
• Examine and handle alerts from Security Information and Event Management (SIEM) systems
• Supervise email and spam filtering systems, addressing malicious activities
• Manage application whitelisting and file integrity monitoring processes
• Ensure adherence to cybersecurity configurations through vulnerability management tools
• Address vulnerabilities and findings from penetration testing
• Undertake additional tasks as directed by the Manager, Security Architecture

Qualifications:

• Bachelor's degree in Information Systems, Computer Science, or comparable experience
• 2–4 years of experience in IT or cybersecurity positions
• Proficient in SIEM, Intrusion Detection/Prevention Systems (IDS/IPS), malware defense, DLP, Identity and Access Management (IAM), vulnerability scanning, and incident response

Our Commitment to You:

• Learning & Development: We support your success with customized training programs to foster your career growth.
• Travel Perks: Benefit from complimentary stays and discounted rates at our global properties for you and your family.
• Health & Wellness: We provide a range of health benefits and wellness initiatives to promote a balanced lifestyle.
• Retirement Benefits: Depending on your role and length of service, we offer retirement plans to honor your dedication.

A leading multinational servicing company is looking to strengthen their cybersecurity team by recruiting a Security Analyst. This role reports to the Security Architecture Manager and will be responsible for supporting global cybersecurity operations by monitoring, analyzing, and maintaining the security posture across on-premises, cloud, and mobile environments.

Candidates should have exposure in the following:

• Minimum 2 to 4 years of experience in IT or cybersecurity roles
• Strong knowledge of SIEM, IDS/IPS, malware protection, Data Loss Prevention (DLP), Identity and Access Management (IAM), vulnerability scanning, and incident response
• Proven ability to detect and respond to network anomalies and malware events across multiple security platforms
• Experience managing and monitoring DLP solutions, email filtering systems, and application whitelisting
• Skilled at investigating and managing SIEM alerts and overseeing cybersecurity configuration compliance via vulnerability management tools
• Bachelor's degree in Information Systems, Computer Science, or equivalent experience

This role requires strong collaboration skills to work closely with security engineers, architects, and IT teams to ensure compliance and resilience across the organization's digital infrastructure.

For more information, please contact OR WhatsApp

Job Description:

• Minimum of 4 years of experience in information security or a similar role.
• Strong understanding of information security principles, standards, and best practices.
• General knowledge in industry regulations and framework such as NIST Cybersecurity Framework, ISO27001 or PCI DSS.
• Experience with security assessment tools and techniques.
• Knowledge in network and system security, including firewalls, intrusion detection/prevention systems, and endpoint protection.
• Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams.
• Relevant certifications such as CISSP, CISM, or CEH are desirable.

About Pure Software:

PureSoftware, a wholly owned subsidiary of Happiest Minds Technologies, is a global software products and digital services company. PureSoftware has been driving transformation for the world's top organizations across various industry verticals, including banking, financial services, and insurance, life sciences and healthcare, high tech and communications, retail and logistics, and gaming and entertainment. Arttha, from PureSoftware, is a globally trusted financial technology platform.

PureSoftware is Great Place to Work Certified in India for the third consecutive year

Job Purpose

You will be responsible for carrying out information security functions and activities for the Technology function.

Responsibilities

• Protect the confidentiality, integrity and availability of all assets and systems through monitoring, detection, and analysis activities
• Review and assess information security requests to determine compliance with organizational policies and standards.
• Prepare and present cybersecurity-related reports, highlighting risks, incidents, and remediation efforts.
• Facilitate the annual recertification process for user access and security controls.
• Collaborate with IT teams to implement security measures, and remediate the audit findings
• Participate in and manage security-related projects to enhance overall security posture.
• Support Information security team to develop and implement security policies, procedures and guidelines
• Validate information security controls effectiveness and agreed deliverables to assure security standards/plans are achieved.
• Review the current IT Security solution and Security Policy to identify potential gaps within the organisation
• Undertake monitoring of security controls and policy adherence in line with Bupa policies based on ISO27001 and NIST Cybersecurity
• Monitor the security controls for security breaches and investigate violations
• Conduct risk and vulnerability assessment at the network, system and application level, and assess resulting impact on risk

Qualifications, Training and Experience

• Relevant Bachelor's/Master's degree holder from a recognized university
• 3-5 years of relevant work experience on managing security technologies
• Work experience in cloud security solution experience (Wiz preferred)
• Work experience in web proxy / SASE solutions (Palo Alto Prisma SASE preferred)
• Work experience cloud platforms (Azure, GCP preferred)
• Experience in managing security solutions, such as Wiz, Palo Alto Prisma, Zscaler, MS Defender, Imperva, Cloudfare
• Scripting skills, such as Terraforms, MS PowerShell, Python
• Good communication skills and the ability to collaborate well with across departments
• Able to demonstrate a positive, logical, and proactive approach while executing the assigned tasks
• Certification holder in information security (CISSP, CISA, etc.) will be an advantage.
• Ability to prioritize work and design schedules to meet the desired requirements

Bupa offers 5 days' work per week and comprehensive remuneration packages including base salary, study assistance plan, company pension plan, life and medical benefit, dental benefit, annual leave, examination leave, etc.

Bupa is an equal opportunity employer and welcomes applications from qualified candidates. Information provided will be treated in strict confidence and only be used for consideration of application with Bupa.

Personal data collected will be used for recruitment purposes only. Bupa will be in touch for any opportunities that matches your profile. All personal data of unsuccessful application will be destroyed 24 months from the date of receiving the application. Full version of Data Privacy Notice available upon request.