55 Data Security jobs in Hong Kong

**Associate Director, Data Security and Compliance**
The Asia Data Office (ADO) is a team of data professionals dedicated to enabling data as a strategic asset to drive business outcomes across Asia and the broader Asia segment. The team comprises Data Analysts, Architects, Engineers, and Business Intelligence professionals focused on delivering high-quality, accessible data for use cases spanning Business Intelligence, Digital Applications, and Advanced Analytics.
We are seeking a highly skilled and experienced Associate Director, Data Security and Compliance to spearhead the development and enforcement of access management frameworks and data risk policies across multiple data lakes in Asia, while ensuring alignment with global standards. This role is critical in maintaining regulatory compliance across ten markets and managing key data risks within the Asia Data Office.
**Position Responsibilities:**
**Access Management**
+ **Framework Development:** Design, implement, and maintain robust access management frameworks and policies to ensure secure and efficient data access across Asia's data lakes.
+ **Policy Integration:** Collaborate with global teams to align regional access policies with global standards.
+ **Access Controls:** Regularly monitor and audit access controls to ensure compliance with internal policies and security protocols.
+ **User Access Management:** Oversee role-based access provisioning, ensuring appropriate access levels based on responsibilities.
+ **Technology Enablement:** Partner with IT and architecture teams to implement tools and technologies that support access governance.
**Data Governance**
+ **Governance Oversight:** Ensure effective governance of data access, maintaining data integrity, security, and availability.
+ **Quality Initiatives:** Lead efforts to standardize and harmonize data access processes across the region.
+ **Policy Enforcement:** Ensure adherence to data governance policies by all stakeholders.
**Regulatory Compliance**
+ **Compliance Monitoring:** Track and ensure compliance with data access regulations across ten markets, adapting policies as needed.
+ **Regulatory Liaison:** Work closely with legal and compliance teams to meet local and international regulatory requirements.
+ **Documentation:** Maintain clear and comprehensive documentation of access policies and procedures.
**Data Risk Management**
+ **Risk Identification & Mitigation:** Identify, assess, and mitigate data privacy and security risks. Lead Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs).
+ **Risk Execution:** Own and execute Information Risk Assessments (IRAs) for the Asia Data Office.
+ **Audit & Compliance:** Conduct regular audits to ensure ongoing compliance with privacy and security laws. Implement corrective actions as necessary.
+ **Incident Response:** Lead response efforts for data breach incidents, including investigation, reporting, and remediation.
+ **Reporting:** Provide regular updates on data risk status and mitigation strategies to the Asia Chief Data Officer and senior leadership.
+ **Training & Awareness:** Develop and deliver training programs to promote a culture of privacy and data security awareness.
**Coordination & Collaboration**
+ **Cross-Functional Engagement:** Collaborate with IT, legal, compliance, architecture, engineering, and business teams to ensure cohesive access management.
+ **Culture Building:** Promote data stewardship and accountability across the organization.
+ **Solution Design:** Work closely with solution and data architects to design access management solutions aligned with business and regulatory needs.
**Required Qualifications:**
+ Bachelor's or Master's degree in Information Technology, Data Science, Business Administration, or a related field.
+ 8-10 years of experience in access management, data governance, or risk management.
+ Experience in a multinational organization with a focus on Asia.
+ Professional certifications such as CIPP, CRISC, or CDMP.
+ Strong knowledge of access frameworks, governance policies, and regulatory compliance.
+ Proficiency in technologies such as SQL, Oracle RDBMS, Microsoft Synapse, Azure Data Lake Storage (ADLS), Azure Data Factory, Cosmos DB, and Databricks.
+ Foundational understanding of emerging technologies like Generative AI and OpenAI.
+ Demonstrated experience in managing data risks and implementing mitigation strategies.
+ Excellent leadership, communication, and stakeholder management skills.
+ Ability to thrive in a fast-paced, dynamic environment with multiple priorities.
**_When you join our team:_**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido

Associate Director, Data Security and Compliance

Join to apply for the Associate Director, Data Security and Compliance role at Manulife

Associate Director, Data Security and Compliance

2 weeks ago Be among the first 25 applicants

Join to apply for the Associate Director, Data Security and Compliance role at Manulife

The Asia Data Office (ADO) is a team of data professionals dedicated to enabling data as a strategic asset to drive business outcomes across Asia and the broader Asia segment. The team comprises Data Analysts, Architects, Engineers, and Business Intelligence professionals focused on delivering high-quality, accessible data for use cases spanning Business Intelligence, Digital Applications, and Advanced Analytics.
We are seeking a highly skilled and experienced Associate Director, Data Security and Compliance to spearhead the development and enforcement of access management frameworks and data risk policies across multiple data lakes in Asia, while ensuring alignment with global standards. This role is critical in maintaining regulatory compliance across ten markets and managing key data risks within the Asia Data Office.
Position Responsibilities
Access Management

• Framework Development: Design, implement, and maintain robust access management frameworks and policies to ensure secure and efficient data access across Asia’s data lakes.
• Policy Integration: Collaborate with global teams to align regional access policies with global standards.
• Access Controls: Regularly monitor and audit access controls to ensure compliance with internal policies and security protocols.
• User Access Management: Oversee role-based access provisioning, ensuring appropriate access levels based on responsibilities.
• Technology Enablement: Partner with IT and architecture teams to implement tools and technologies that support access governance.
  

Data Governance

• Governance Oversight: Ensure effective governance of data access, maintaining data integrity, security, and availability.
• Quality Initiatives: Lead efforts to standardize and harmonize data access processes across the region.
• Policy Enforcement: Ensure adherence to data governance policies by all stakeholders.
  

Regulatory Compliance

• Compliance Monitoring: Track and ensure compliance with data access regulations across ten markets, adapting policies as needed.
• Regulatory Liaison: Work closely with legal and compliance teams to meet local and international regulatory requirements.
• Documentation: Maintain clear and comprehensive documentation of access policies and procedures.
  

Data Risk Management

• Risk Identification & Mitigation: Identify, assess, and mitigate data privacy and security risks. Lead Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs).
• Risk Execution: Own and execute Information Risk Assessments (IRAs) for the Asia Data Office.
• Audit & Compliance: Conduct regular audits to ensure ongoing compliance with privacy and security laws. Implement corrective actions as necessary.
• Incident Response: Lead response efforts for data breach incidents, including investigation, reporting, and remediation.
• Reporting: Provide regular updates on data risk status and mitigation strategies to the Asia Chief Data Officer and senior leadership.
• Training & Awareness: Develop and deliver training programs to promote a culture of privacy and data security awareness.
  

Coordination & Collaboration

• Cross-Functional Engagement: Collaborate with IT, legal, compliance, architecture, engineering, and business teams to ensure cohesive access management.
• Culture Building: Promote data stewardship and accountability across the organization.
• Solution Design: Work closely with solution and data architects to design access management solutions aligned with business and regulatory needs.
  

Required Qualifications

• Bachelor’s or Master’s degree in Information Technology, Data Science, Business Administration, or a related field.
• 8–10 years of experience in access management, data governance, or risk management.
• Experience in a multinational organization with a focus on Asia.
• Professional certifications such as CIPP, CRISC, or CDMP.
• Strong knowledge of access frameworks, governance policies, and regulatory compliance.
• Proficiency in technologies such as SQL, Oracle RDBMS, Microsoft Synapse, Azure Data Lake Storage (ADLS), Azure Data Factory, Cosmos DB, and Databricks.
• Foundational understanding of emerging technologies like Generative AI and OpenAI.
• Demonstrated experience in managing data risks and implementing mitigation strategies.
• Excellent leadership, communication, and stakeholder management skills.
• Ability to thrive in a fast-paced, dynamic environment with multiple priorities.
  

When You Join Our Team

• We’ll empower you to learn and grow the career you want.
• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we’ll support you in shaping the future you want to see.
  

About Manulife And John Hancock
Manulife Financial Corporation is a leading international financial services provider, helping people make their decisions easier and lives better. To learn more about us, visit is an Equal Opportunity Employer
At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law.
It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact
Working Arrangement
Hybrid Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Other
• Industries Insurance

Referrals increase your chances of interviewing at Manulife by 2x

Get notified about new Director of Security jobs in Hong Kong, Hong Kong SAR .

Corporate Bank - Head of Securities Services - Director/ VP Director/ Deputy Director, Client Development

Shenzhen, Guangdong, China CN¥20,000.00-CN¥0,000.00 2 years ago

Treasury Director, Chinese Securities, 85k Security Operations Manager (MNC Retail) Manager, Infrastructure and Network Operations, Global IT Security and Operation Specialist (Asst Manager Level) Senior Operations Manager, Securities Brokerage

Shenzhen, Guangdong, China CN 0,000.00-CN 0,000.00 2 years ago

Security Architect - Director/Executive Level Data Engineer, Director P4, Institutional Securities Technology Manager/Associate Director, Cyber Security (Strategy, Governance & Risk), Technology Consulting Manager/Associate Director, Cyber Security (Simulated Attack), Technology Consulting Manager, Cyber Security Operations (MJ006042) Manager/Associate Director , Cloud Security, Technology Consulting Manager/Associate Director, Data Privacy and Protection, Technology Consulting Assistant Manager (Ant Bank - For Securities Operations) Manager - Professional Environment Services (Facilities & Office Operation) - Hong Kong(314235) Marketing Officer/ Senior Marketing Officer

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Are you a master of craft?Do you thrive in a team that succeeds together, demonstrating integrity and respect while acting responsibly? Do you embrace a growth mindset? We invite you to become a fan of the exceptional.

Mandarin Oriental is the award-winning owner and operator of some of the most luxurious hotels, resorts and residences located in prime destinations around the world, with a strong development pipeline. Increasingly recognized for creating some of the world’s most sought-after properties, the Group provides legendary service inspired by Asian heritage whilst representing the very cutting-edge of luxury experiences.

Position Title: Security Analyst

Position Objective:

The Security Analyst will support Mandarin Oriental’s global cybersecurity operations by monitoring, analyzing, and maintaining the security posture across on-premises, cloud, and mobile environments. This role will work closely with security engineers, architects, and IT teams to detect, investigate, and remediate threats, ensuring compliance and resilience across the Group’s digital infrastructure.

Key Responsibilities:

• Monitor up-time, reliability, stability, and policy compliance of security systems; coordinate with business units to remediate gaps (15%)
• Detect and respond to network anomalies and malware events across multiple security platforms (20%)
• Manage and monitor network, host, and cloud Data Loss Prevention (DLP) solutions (15%)
• Investigate and manage SIEM alerts (10%)
• Monitor email/spam filtering systems and remediate malicious events (10%)
• Oversee application whitelisting and file integrity monitoring (10%)
• Ensure cybersecurity configuration compliance via vulnerability management tools (10%)
• Manage remediation of vulnerabilities and penetration testing findings (10%)
• Perform additional duties as assigned by the Manager, Security Architecture

Qualifications:

• Bachelor’s degree in Information Systems, Computer Science, or equivalent experience
• 2–4 years of experience in IT or cybersecurity roles
• Strong knowledge of SIEM, IDS/IPS, malware protection, DLP, IAM, vulnerability scanning, and incident response

Our commitment to you

• Learning & Development. Your success is our success. We craft unique learning and development programmes for various stages in your career so that you grow, continuously.
• MOstay. When you work as hard as our colleagues do, it’s important to take time off. As a member of the #MOfamily, you can stay with us wherever you go in the world. The MOstay programme offers complimentary nights and additionally attractive rates on rooms for you and your loved ones.
• Heath & Colleague Wellness. Finding the right work-life balance is important. Your wellbeing matters to us. A variety of health benefits and wellness programmes are offered to all our colleagues, globally.
• Retirement Plans. When you show commitment to us, we reciprocate. We offer different retirement plans depending on the length of your service and your role.

We’re Fans. Are you?

#J-18808-Ljbffr

Are you a master of craft?Do you thrive in a team that succeeds together, demonstrating integrity and respect while acting responsibly? Do you embrace a growth mindset? We invite you to become a fan of the exceptional.

Mandarin Oriental is the award-winning owner and operator of some of the most luxurious hotels, resorts and residences located in prime destinations around the world, with a strong development pipeline. Increasingly recognized for creating some of the world’s most sought-after properties, the Group provides legendary service inspired by Asian heritage whilst representing the very cutting-edge of luxury experiences.

Position Title: Security Analyst

Position Objective:

The Security Analyst will support Mandarin Oriental’s global cybersecurity operations by monitoring, analyzing, and maintaining the security posture across on-premises, cloud, and mobile environments. This role will work closely with security engineers, architects, and IT teams to detect, investigate, and remediate threats, ensuring compliance and resilience across the Group’s digital infrastructure.

Key Responsibilities:

• Monitor up-time, reliability, stability, and policy compliance of security systems; coordinate with business units to remediate gaps (15%)
• Detect and respond to network anomalies and malware events across multiple security platforms (20%)
• Manage and monitor network, host, and cloud Data Loss Prevention (DLP) solutions (15%)
• Investigate and manage SIEM alerts (10%)
• Monitor email/spam filtering systems and remediate malicious events (10%)
• Oversee application whitelisting and file integrity monitoring (10%)
• Ensure cybersecurity configuration compliance via vulnerability management tools (10%)
• Manage remediation of vulnerabilities and penetration testing findings (10%)
• Perform additional duties as assigned by the Manager, Security Architecture

Qualifications:

• Bachelor’s degree in Information Systems, Computer Science, or equivalent experience
• 2–4 years of experience in IT or cybersecurity roles
• Strong knowledge of SIEM, IDS/IPS, malware protection, DLP, IAM, vulnerability scanning, and incident response

Our commitment to you

• Learning & Development. Your success is our success. We craft unique learning and development programmes for various stages in your career so that you grow, continuously.
• MOstay. When you work as hard as our colleagues do, it’s important to take time off. As a member of the #MOfamily, you can stay with us wherever you go in the world. The MOstay programme offers complimentary nights and additionally attractive rates on rooms for you and your loved ones.
• Heath & Colleague Wellness. Finding the right work-life balance is important. Your wellbeing matters to us. A variety of health benefits and wellness programmes are offered to all our colleagues, globally.
• Retirement Plans. When you show commitment to us, we reciprocate. We offer different retirement plans depending on the length of your service and your role.

We’re Fans. Are you?

#J-18808-Ljbffr

1 day ago Be among the first 25 applicants

Direct message the job poster from REC GROUP

Important: Only Candidates with Hong Kong Credentials Will Be Considered

We are ONLY hiring individuals who:

Are based in Hong Kong, OR

Hold valid Hong Kong identification / visa / work permit.

Applicants without Hong Kong credentials will not be considered.

Please ensure your eligibility before applying. Thank you!

Join Our Remote Revolution | Multiple Open Roles Available

Forget boring jobs.

Forget rigid offices.

If you’re sharp, hungry, and ready to build your future — we want you.

Who We Are:

We are a growing, global, remote-first team working across finance, business, and professional services.

We move fast, we dream big, and we believe great people make great companies — not the other way around.

What We’re Offering:

• 100% remote — work from your city, your couch, your favorite coffee shop
• Flexible hours — we care about results, not clock-watching
• Growth opportunities — mentorship, upskilling, real career tracks

Who You Are:

• Hong Kong-based OR have valid Hong Kong documentation
• A quick learner who loves solving problems
• Independent, reliable, and not afraid to make things happen
• Comfortable with tools like Slack, Zoom, Google Workspace, MS Office
• English fluency preferred — other languages are a plus
• Finance, Business, Admin, Client Services backgrounds? Perfect — but not required.

We’re currently recruiting across multiple positions.

You bring the drive — we’ll bring the opportunity.

Let’s make big things happen together.

Seniority level

• Entry level

Employment type

• Full-time

Job function

• Information Technology

Industries

• Staffing and Recruiting

#J-18808-Ljbffr

1 day ago Be among the first 25 applicants

Direct message the job poster from REC GROUP

Important: Only Candidates with Hong Kong Credentials Will Be Considered

We are ONLY hiring individuals who:

Are based in Hong Kong, OR

Hold valid Hong Kong identification / visa / work permit.

Applicants without Hong Kong credentials will not be considered.

Please ensure your eligibility before applying. Thank you!

Join Our Remote Revolution | Multiple Open Roles Available

Forget boring jobs.

Forget rigid offices.

If you’re sharp, hungry, and ready to build your future — we want you.

Who We Are:

We are a growing, global, remote-first team working across finance, business, and professional services.

We move fast, we dream big, and we believe great people make great companies — not the other way around.

What We’re Offering:

• 100% remote — work from your city, your couch, your favorite coffee shop
• Flexible hours — we care about results, not clock-watching
• Growth opportunities — mentorship, upskilling, real career tracks

Who You Are:

• Hong Kong-based OR have valid Hong Kong documentation
• A quick learner who loves solving problems
• Independent, reliable, and not afraid to make things happen
• Comfortable with tools like Slack, Zoom, Google Workspace, MS Office
• English fluency preferred — other languages are a plus
• Finance, Business, Admin, Client Services backgrounds? Perfect — but not required.

We’re currently recruiting across multiple positions.

You bring the drive — we’ll bring the opportunity.

Let’s make big things happen together.

Seniority level

• Entry level

Employment type

• Full-time

Job function

• Information Technology

Industries

• Staffing and Recruiting

#J-18808-Ljbffr

Cyber Security Analyst - Group Chief Information Officer

Join to apply for the Cyber Security Analyst - Group Chief Information Officer role at HSBC

Job Description

Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC and fulfill your potential. Whether you want a career that could take you to the top or simply take you in an exciting new direction, HSBC offers opportunities, support, and rewards that will take you further.

Our GCIO organization plays a critical role for the bank. This team partners with the business to build platforms, systems, and products that our customers use every day. We keep people’s money and data safe and are at the forefront of driving innovation for our businesses, customers, and colleagues. Within GCIO, our cybersecurity team designs, implements, and operates controls to manage risk. This team helps define our group cybersecurity standards, oversee the security of our network, applications, and infrastructure, and provides round-the-clock monitoring and incident response services.

We are currently seeking a high-caliber professional to join our team as a Cyber Security Analyst .

Principal Responsibilities

• The Cryptography Operations team directly impacts the business by implementing cryptographic solutions aligned with the business’s risk appetite. This role involves managing cryptographic hardware and related software, including configuration, crypto-load, and installation into data centers or external hosting environments.
• Develop knowledge objects, procedures, and secondary standards to support SLA or project deliverables.
• Maintain and enhance cryptographic technology, processes, and controls.
• Ensure cryptographic inventory controls (keys and HSM) are maintained.
• Implement and operate cryptographic controls, contribute to risk reduction, escalation, and reporting, and support remediation of risk items.
• Provide guidance on new crypto technology, processes, and controls.
• Support KCI/KPI metrics and reporting.

Requirements

To be successful, you will need:

• Knowledge of cryptography technologies applicable to financial services, cloud security, data security, internet, and cyber security.
• Preferred certifications: PCI QSA, CISA/CISM, CISSP, ITIL, or relevant college education.
• Experience with hardware-based encryption, internal controls, cybersecurity, and compliance is a plus.
• Proficiency with collaboration tools such as Atlassian JIRA, Confluence, MS Teams, SharePoint.
• Unix/Linux platforms, scripting, basic programming in Java or Python, and cloud experience (AWS, Azure, GCP) are desirable.
• Experience in IT development, services management, and system administration is advantageous.
• Availability to work evenings or weekends as needed.
• Possession of a valid UK driver’s license and own private vehicle (UK only).

Additional Information

For more opportunities, visit

HSBC values a diverse and inclusive workplace, fostering professional growth and flexible working arrangements. Personal data from applications will be handled according to our Privacy Statement.

Issued by The Hongkong and Shanghai Banking Corporation Limited.

Details

• Seniority level: Not Applicable
• Employment type: Full-time
• Job function: Information Technology
• Industries: Banking, Financial Services, Investment Banking

Referrals can double your chances of interview at HSBC.

#J-18808-Ljbffr

Cyber Security Analyst - Group Chief Information Officer

Join to apply for the Cyber Security Analyst - Group Chief Information Officer role at HSBC

Job Description

Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC and fulfill your potential. Whether you want a career that could take you to the top or simply take you in an exciting new direction, HSBC offers opportunities, support, and rewards that will take you further.

Our GCIO organization plays a critical role for the bank. This team partners with the business to build platforms, systems, and products that our customers use every day. We keep people’s money and data safe and are at the forefront of driving innovation for our businesses, customers, and colleagues. Within GCIO, our cybersecurity team designs, implements, and operates controls to manage risk. This team helps define our group cybersecurity standards, oversee the security of our network, applications, and infrastructure, and provides round-the-clock monitoring and incident response services.

We are currently seeking a high-caliber professional to join our team as a Cyber Security Analyst .

Principal Responsibilities

• The Cryptography Operations team directly impacts the business by implementing cryptographic solutions aligned with the business’s risk appetite. This role involves managing cryptographic hardware and related software, including configuration, crypto-load, and installation into data centers or external hosting environments.
• Develop knowledge objects, procedures, and secondary standards to support SLA or project deliverables.
• Maintain and enhance cryptographic technology, processes, and controls.
• Ensure cryptographic inventory controls (keys and HSM) are maintained.
• Implement and operate cryptographic controls, contribute to risk reduction, escalation, and reporting, and support remediation of risk items.
• Provide guidance on new crypto technology, processes, and controls.
• Support KCI/KPI metrics and reporting.

Requirements

To be successful, you will need:

• Knowledge of cryptography technologies applicable to financial services, cloud security, data security, internet, and cyber security.
• Preferred certifications: PCI QSA, CISA/CISM, CISSP, ITIL, or relevant college education.
• Experience with hardware-based encryption, internal controls, cybersecurity, and compliance is a plus.
• Proficiency with collaboration tools such as Atlassian JIRA, Confluence, MS Teams, SharePoint.
• Unix/Linux platforms, scripting, basic programming in Java or Python, and cloud experience (AWS, Azure, GCP) are desirable.
• Experience in IT development, services management, and system administration is advantageous.
• Availability to work evenings or weekends as needed.
• Possession of a valid UK driver’s license and own private vehicle (UK only).

Additional Information

For more opportunities, visit

HSBC values a diverse and inclusive workplace, fostering professional growth and flexible working arrangements. Personal data from applications will be handled according to our Privacy Statement.

Issued by The Hongkong and Shanghai Banking Corporation Limited.

Details

• Seniority level: Not Applicable
• Employment type: Full-time
• Job function: Information Technology
• Industries: Banking, Financial Services, Investment Banking

Referrals can double your chances of interview at HSBC.

#J-18808-Ljbffr

Cyber Security Analyst / Engineer (Identity and Access Management)

Join to apply for the Cyber Security Analyst / Engineer (Identity and Access Management) role at Mox Bank

Cyber Security Analyst / Engineer (Identity and Access Management)

2 days ago Be among the first 25 applicants

Join to apply for the Cyber Security Analyst / Engineer (Identity and Access Management) role at Mox Bank

Get AI-powered advice on this job and more exclusive features.

About Mox

Mox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.

Application Deadline: 1 September 2025

Department: Technology-CDSIO

Location: Hong Kong (SAR)

Description

About the job

About Mox

Mox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.

Why Mox

Everything at Mox – from our products, features, to rewards – is designed based on customer research, tailor made for your needs. We care about what customers care about, especially in data security and privacy. Data ethics is core to everyone here at Mox. Mox rewards you with an array of banking and lifestyle benefits. Who says banking can’t be fun?

What we are looking for?

We are looking for a results-driven Identity and Access Management professional with solid hands-on experience in cloud security, IAM solutions, a process-driven approach, and excellent stakeholder management skills. The ideal candidate will have at least 3 years of experience within a cyber security related role, be a self-motivated individual who can work independently, take ownership of their work, and drive continuous improvement in Identity and Access Management processes to optimise efficiency and effectiveness.



Responsibilities

• Maintain and improve existing security infrastructure on cloud platforms
• Develop and implement comprehensive IAM strategies, aligning with internal policies, industry best practices, and regulatory requirements
• Design and deploy access controls to ensure least privilege and segregation of duties
• Collaborate with cross-functional teams, including platform, security, and development teams, to implement guardrails and maintain IAM solutions
• Provide technical support, guidance, and training on IAM-related processes and tools
• Drive access certifications to ensure users have appropriate access to resources
• Identify and mitigate IAM-related risks, including compliance gaps, and implement improvements to automate and streamline IAM processes
• Develop and maintain accurate documentation of IAM processes, policies, and procedures
• Champion metric reporting on IAM compliance
  
  

Requirements

• Passion for cyber security, development, and working with highly technical team members
• Hands-on experience with designing, implementing, and maintaining IAM solutions and technologies
• Strong understanding of IAM concepts, including authentication, authorisation, and accounting
• Strong knowledge of Identity and Privileged Access Management guidelines and frameworks
• Strong stakeholder management and influential skills, with the ability to communicate complex technical concepts to non-technical stakeholders and drive change across the bank
• Cloud computing and management experience on AWS via any IaC tools
• Experience with DevOps tools and branching strategies
• A minimum of 2 years of experience in developing Python and automation scripts is required
• Fluent in English writing and communication
  
  

All personal data provided by applicants will be used for recruitment and other employment-related purposes only. Personal data of unsuccessful applicants will be erased within 24 months of rejection of the applicant’s application.

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Banking

Referrals increase your chances of interviewing at Mox Bank by 2x

Sign in to set job alerts for “Cyber Security Analyst” roles. Cybersecurity Analyst (Listed Company/ Up to 55K/Perm) Information Technology Cybersecurity Analyst / Specialist

Eastern District, Hong Kong SAR 2 weeks ago

Application Security Engineer (Pentester) Cybersecurity Detection and Response Analyst Analyst, Cyber Security (Ref: DTD194/25, 10514) Regional Information Security Engineer - Renewable Contract Associate - IT Security (Corporate Bank) Cyber Security Specialist (Vulnerability Management) Security Engineer (1-year renewable contract) Application Security Specialist & Penetration Tester Global Security GRC Analyst (Governance, Risk, and Compliance)

Kwun Tong District, Hong Kong SAR 16 hours ago

IT Security Operations Analyst (13-month contract) (Senior) Security Engineer, Security Engineering & Threat Intelligence Technology Consulting - Cyber Security - Blue Team - Senior Associate - Hong Kong Blockchain Security Technical Support Engineer

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr