89 Security Expert jobs in Hong Kong

2 days ago Be among the first 25 applicants

We are seeking a highly capable and experienced professional with approximately 10 years of experience in cybersecurity governance, and IT audit and security assessment support. This role focuses on leading security assessments in collaboration with technical teams, reviewing and translating technical findings into clear and impactful reports for clients, regulators, and senior management. The ideal candidate will possess strong analytical skills, excellent communication abilities, and a solid understanding of security controls across various technology domains.

Your Role

• Lead and coordinate security assessments across infrastructure, applications, and cloud environments, working closely with technical SMEs.
• Interface with technical teams to understand control implementation and translate findings into governance insights.
• Prepare high-quality security reports and presentations tailored for client and senior stakeholders.
• Support responses to client and regulatory security inquiries, ensuring accuracy, clarity, and timely delivery.
• Support the development of security reporting and risk metrics
• Contribute to the development and refinement of security policies, standards, and procedures.
• Support audit and assessment activities, including evidence collection and coordination with internal teams.
• Promote security awareness and contribute to training initiatives across the organization.

To Succeed in this Role

• Minimum 10 years of experience in cybersecurity governance, technology risk, or audit-related roles.
• Strong understanding of security controls across infrastructure, application, and cloud domains.
• Proven ability to work with technical teams and translate technical content into business-friendly reporting.
• Experience in preparing client-facing documentation and presentations.
• Excellent written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST, CIS).
• Relevant certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or equivalent are preferred.

Preferred Attributes

• Experience in regulated industries such as finance, healthcare, or insurance.
• Strong stakeholder engagement and coordination skills.
• Detail-oriented with a proactive and structured approach to governance.
• Familiarity with GRC

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Information Security Specialist jobs in Hong Kong, Hong Kong SAR .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Manager, Security Management role at Bank of Communications Co., Ltd. London Branch

Continue with Google Continue with Google

Join to apply for the Manager, Security Management role at Bank of Communications Co., Ltd. London Branch

Get AI-powered advice on this job and more exclusive features.

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Company Description

Founded in 1908, Bank of Communications Co., Ltd. (Stock Code: 3328) is one of the oldest banks in China, and also acted as one of the country’s banknote-issuing institutions. The bank was listed on the Stock Exchange of Hong Kong Limited and the Shanghai Stock Exchange in June 2005 and May 2007 respectively. At present, apart from Tibet, BOCOM comprises 30 provincial branches across provinces, municipalities and autonomous regions, plus a network of 2,637 operating locations in 173 cities and 112 counties nationwide. Beyond China, BOCOM has established overseas centers in Hong Kong, New York, San Francisco, Tokyo, Singapore, Seoul, Frankfurt, Macau, Ho Chi Minh City, and Sydney; one subsidiary bank in the U.K. and one representative office in Taipei. BOCOM’s development strategy is to become a first class listed universal banking group focusing on international expansion and specializing in wealth management.

Company Description

Founded in 1908, Bank of Communications Co., Ltd. (Stock Code: 3328) is one of the oldest banks in China, and also acted as one of the country’s banknote-issuing institutions. The bank was listed on the Stock Exchange of Hong Kong Limited and the Shanghai Stock Exchange in June 2005 and May 2007 respectively. At present, apart from Tibet, BOCOM comprises 30 provincial branches across provinces, municipalities and autonomous regions, plus a network of 2,637 operating locations in 173 cities and 112 counties nationwide. Beyond China, BOCOM has established overseas centers in Hong Kong, New York, San Francisco, Tokyo, Singapore, Seoul, Frankfurt, Macau, Ho Chi Minh City, and Sydney; one subsidiary bank in the U.K. and one representative office in Taipei. BOCOM’s development strategy is to become a first class listed universal banking group focusing on international expansion and specializing in wealth management.

Job Description

• Motivate an effective security operations team to oversee the security services
• Follow up the incident report and drive the analysis of security incidents
• Analyze industry trends and make recommendation to Senior Management for improving risk exposure
• Manage the external vendors in respect of regular communications and ad-hoc work as assigned
• Degree holder or above in Business Administration or related disciplines
• Minimum 5 years' work experience in security service industry or disciplinary service
• Excellent leadership with practical knowledge and good problem-solving skills
• Self-motivated with professional appearance and be customer-oriented
• Strong analytical mind with good communication and interpersonal skills

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Accounting/Auditing and Finance
• Industries Banking and Investment Banking

Referrals increase your chances of interviewing at Bank of Communications Co., Ltd. London Branch by 2x

Get notified about new Security Manager jobs in Hong Kong, Hong Kong SAR .

Sha Tin District, Hong Kong SAR 20 minutes ago

Shenzhen, Guangdong, China
CN¥40,000.00
-
CN¥60,000.00
1 year ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Manager, Security Management role at Bank of Communications Co., Ltd. London Branch

Continue with Google Continue with Google

Join to apply for the Manager, Security Management role at Bank of Communications Co., Ltd. London Branch

Get AI-powered advice on this job and more exclusive features.

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Company Description
Founded in 1908, Bank of Communications Co., Ltd. (Stock Code: 3328) is one of the oldest banks in China, and also acted as one of the country’s banknote-issuing institutions. The bank was listed on the Stock Exchange of Hong Kong Limited and the Shanghai Stock Exchange in June 2005 and May 2007 respectively. At present, apart from Tibet, BOCOM comprises 30 provincial branches across provinces, municipalities and autonomous regions, plus a network of 2,637 operating locations in 173 cities and 112 counties nationwide. Beyond China, BOCOM has established overseas centers in Hong Kong, New York, San Francisco, Tokyo, Singapore, Seoul, Frankfurt, Macau, Ho Chi Minh City, and Sydney; one subsidiary bank in the U.K. and one representative office in Taipei. BOCOM’s development strategy is to become a first class listed universal banking group focusing on international expansion and specializing in wealth management.

Company Description
Founded in 1908, Bank of Communications Co., Ltd. (Stock Code: 3328) is one of the oldest banks in China, and also acted as one of the country’s banknote-issuing institutions. The bank was listed on the Stock Exchange of Hong Kong Limited and the Shanghai Stock Exchange in June 2005 and May 2007 respectively. At present, apart from Tibet, BOCOM comprises 30 provincial branches across provinces, municipalities and autonomous regions, plus a network of 2,637 operating locations in 173 cities and 112 counties nationwide. Beyond China, BOCOM has established overseas centers in Hong Kong, New York, San Francisco, Tokyo, Singapore, Seoul, Frankfurt, Macau, Ho Chi Minh City, and Sydney; one subsidiary bank in the U.K. and one representative office in Taipei. BOCOM’s development strategy is to become a first class listed universal banking group focusing on international expansion and specializing in wealth management.
Job Description

• Motivate an effective security operations team to oversee the security services
• Follow up the incident report and drive the analysis of security incidents
• Analyze industry trends and make recommendation to Senior Management for improving risk exposure
• Manage the external vendors in respect of regular communications and ad-hoc work as assigned
• Degree holder or above in Business Administration or related disciplines
• Minimum 5 years' work experience in security service industry or disciplinary service
• Excellent leadership with practical knowledge and good problem-solving skills
• Self-motivated with professional appearance and be customer-oriented
• Strong analytical mind with good communication and interpersonal skills

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Accounting/Auditing and Finance
• Industries Banking and Investment Banking

Referrals increase your chances of interviewing at Bank of Communications Co., Ltd. London Branch by 2x

Get notified about new Security Manager jobs in Hong Kong, Hong Kong SAR .

Sha Tin District, Hong Kong SAR 20 minutes ago

Shenzhen, Guangdong, China
CN¥40,000.00
-
CN¥60,000.00
1 year ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Expert Application Security Engineer (iOS) role at OKX

2 weeks ago Be among the first 25 applicants

Join to apply for the Expert Application Security Engineer (iOS) role at OKX

About OKX

At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the world. In recent years, we have developed one of the most connected Web3 wallets used by millions to access decentralized crypto applications (dApps). OKX is a trusted brand by hundreds of large institutions seeking access to crypto markets on a reliable platform that seamlessly connects with global banking and payments. In the last year, OKX has expanded into new markets including Australia, Brazil, Netherlands, Singapore and Turkey, with plans to launch in the US, Belgium and the UAE.

About OKX

At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the world. In recent years, we have developed one of the most connected Web3 wallets used by millions to access decentralized crypto applications (dApps). OKX is a trusted brand by hundreds of large institutions seeking access to crypto markets on a reliable platform that seamlessly connects with global banking and payments. In the last year, OKX has expanded into new markets including Australia, Brazil, Netherlands, Singapore and Turkey, with plans to launch in the US, Belgium and the UAE.

We are deeply committed to shaping a fairer, more transparent and accessible society through blockchain technology. This is why we publish proof of reserves monthly, and continue to ship new innovative security features.

Responsibilities

• Identify and address security vulnerabilities in code, systems, and networks using manual review, automated tools, and threat modeling.
• Manage and optimize application security tools, processes, and alerts.
• Validate and respond to Bug Bounty submissions.
• Stay informed on the latest offensive security techniques, application security threats, and best practices, and suggest improvements to enhance our security posture.
• Produce detailed reports of your findings, present them to both management and technical teams, and contribute to preventing real-world attacks.
• Collaborate with development teams to implement secure coding practices.
• Work alongside other teams, including operations and compliance, to ensure that security is a consistent priority across the organization.
• Participate in incident response and management activities.
  
  
  

• 3+ years of experience in offensive security techniques.
• In-depth understanding of security risks, vulnerabilities, and concepts in web and mobile applications.
• Proficient in code review, particularly with Kotlin/Swift/Typescript/JavaScript, with a strong grasp of application security threats.
• Ability to create proof-of-concepts (PoCs) to demonstrate vulnerabilities, review patch code for adherence to standards, and collaborate with repository owners and maintainers.
• Strong analytical and problem-solving abilities.
• Excellent verbal and written communication skills.
  
  
  

• Prior experience in developing mobile security SDKs with a daily active user base of over ten million is preferred.
• Participated in large-scale business risk control projects, or have practical experience in threat intelligence/business risk prevention, and analysis/countermeasures against black and gray industries.
• In-depth reverse engineering of major apps from first-tier vendors, or other experiences/projects that demonstrate reverse engineering capabilities.
• Priority given to candidates who can simultaneously master relevant technologies on multiple platforms.
• Proficient in ARM assembly, capable of deep-level countermeasures at the native and application layers.
• Have certain capabilities in device fingerprint recognition, able to simulate new devices through methods such as flashing, modification, and application cloning.
  
  
  

• Competitive total compensation package
• L&D programs and Education subsidy for employees' growth and development
• Various team building programs and company events
• More that we love to tell you along the process!

• Seniority level Mid-Senior level

• Employment type Full-time

• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at OKX by 2x

Get notified about new Application Security Engineer jobs in Singapore, Singapore .

Masai, Johore, Malaysia MYR500.00-MYR800.00 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Expert Application Security Engineer (iOS) role at OKX

2 weeks ago Be among the first 25 applicants

Join to apply for the Expert Application Security Engineer (iOS) role at OKX

About OKX
At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the world. In recent years, we have developed one of the most connected Web3 wallets used by millions to access decentralized crypto applications (dApps). OKX is a trusted brand by hundreds of large institutions seeking access to crypto markets on a reliable platform that seamlessly connects with global banking and payments. In the last year, OKX has expanded into new markets including Australia, Brazil, Netherlands, Singapore and Turkey, with plans to launch in the US, Belgium and the UAE.

About OKX
At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the world. In recent years, we have developed one of the most connected Web3 wallets used by millions to access decentralized crypto applications (dApps). OKX is a trusted brand by hundreds of large institutions seeking access to crypto markets on a reliable platform that seamlessly connects with global banking and payments. In the last year, OKX has expanded into new markets including Australia, Brazil, Netherlands, Singapore and Turkey, with plans to launch in the US, Belgium and the UAE.
We are deeply committed to shaping a fairer, more transparent and accessible society through blockchain technology. This is why we publish proof of reserves monthly, and continue to ship new innovative security features.
Responsibilities

• Identify and address security vulnerabilities in code, systems, and networks using manual review, automated tools, and threat modeling.
• Manage and optimize application security tools, processes, and alerts.
• Validate and respond to Bug Bounty submissions.
• Stay informed on the latest offensive security techniques, application security threats, and best practices, and suggest improvements to enhance our security posture.
• Produce detailed reports of your findings, present them to both management and technical teams, and contribute to preventing real-world attacks.
• Collaborate with development teams to implement secure coding practices.
• Work alongside other teams, including operations and compliance, to ensure that security is a consistent priority across the organization.
• Participate in incident response and management activities.
  

• 3+ years of experience in offensive security techniques.
• In-depth understanding of security risks, vulnerabilities, and concepts in web and mobile applications.
• Proficient in code review, particularly with Kotlin/Swift/Typescript/JavaScript, with a strong grasp of application security threats.
• Ability to create proof-of-concepts (PoCs) to demonstrate vulnerabilities, review patch code for adherence to standards, and collaborate with repository owners and maintainers.
• Strong analytical and problem-solving abilities.
• Excellent verbal and written communication skills.
  

• Prior experience in developing mobile security SDKs with a daily active user base of over ten million is preferred.
• Participated in large-scale business risk control projects, or have practical experience in threat intelligence/business risk prevention, and analysis/countermeasures against black and gray industries.
• In-depth reverse engineering of major apps from first-tier vendors, or other experiences/projects that demonstrate reverse engineering capabilities.
• Priority given to candidates who can simultaneously master relevant technologies on multiple platforms.
• Proficient in ARM assembly, capable of deep-level countermeasures at the native and application layers.
• Have certain capabilities in device fingerprint recognition, able to simulate new devices through methods such as flashing, modification, and application cloning.
  

• Competitive total compensation package
• L&D programs and Education subsidy for employees' growth and development
• Various team building programs and company events
• More that we love to tell you along the process!

• Seniority level Mid-Senior level

• Employment type Full-time

• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at OKX by 2x

Get notified about new Application Security Engineer jobs in Singapore, Singapore .

Masai, Johore, Malaysia MYR500.00-MYR800.00 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

4 days ago Be among the first 25 applicants

We are seeking a diligent and proactive Information Security Officer to oversee and maintain the operational integrity, security, and compliance of our secured room facilities. This role is critical in supporting ongoing monitoring, access control, and administrative processes to ensure the highest standards of safety and regulatory compliance are met.

Your Role

• Conduct monthly inspection of access logs and CCTV reviews to ensure adherence to security protocols.
• Manage user access applications on a bi-weekly or ad hoc basis, in line with corporate access governance procedures.
• Complete and maintain a monthly secured room checklist, covering physical and operational controls.
• Perform monthly access inventory assessments, including user recertification activities. • Address administrative and technical issues such as network or hardware incidents on an ad hoc basis.
• Coordinate monitoring and inspection of the Foshan secured room (monthly and as needed).
• Perform daily monitoring of security guard performance and escalate concerns when appropriate.
• Assist in implementing security control enhancements such as mobile device management (MDM), two-factor authentication (2FA), and ID verification improvements

To Succeed in this Role

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field.
• Minimum of 3 years of experience in information security, risk management, or a related role.
• Knowledge of network security principles and incident response procedures.
• Excellent analytical skills with the ability to assess security risks and implement effective mitigation strategies.
• Strong problem-solving abilities to address technical and administrative issues as they arise.
• Effective verbal and written communication skills to convey security policies and procedures clearly to stakeholders.

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

As a 'Manager, Information Security,' your main responsibilities will include:

• Overseeing the implementation and maintenance of the bank's information security systems.
• Conducting regular audits and risk assessments to ensure adherence to security protocols.
• Developing and implementing information security policies and procedures.
• Training and mentoring staff on information security best practices.
• Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
• Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
• Leading and coordinating information security projects across departments.
• Managing incident responses and investigations into security breaches.
• Staying updated on the latest trends and developments in information security.
• Reporting on the status of information security to senior management.

A Successful 'Manager, Information Security' Should Have

• A degree in Computer Science, Information Security, or a related field.
• Proven experience in a managerial role within the field of information security.
• Familiarity with information security regulations and standards in the financial services industry.
• Exceptional leadership and communication skills.
• The ability to handle sensitive information with discretion and integrity.

• A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
• Standard benefits package.
• The chance to work in a fast-paced, technology-driven environment within the financial services industry.
• Opportunities for career progression and professional development.
• A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

• Mid-Senior level

• Full-time

• Information Technology and Engineering

• Financial Services, Accounting, and Banking

4 days ago Be among the first 25 applicants

We are seeking a diligent and proactive Information Security Officer to oversee and maintain the operational integrity, security, and compliance of our secured room facilities. This role is critical in supporting ongoing monitoring, access control, and administrative processes to ensure the highest standards of safety and regulatory compliance are met.

Your Role

• Conduct monthly inspection of access logs and CCTV reviews to ensure adherence to security protocols.
• Manage user access applications on a bi-weekly or ad hoc basis, in line with corporate access governance procedures.
• Complete and maintain a monthly secured room checklist, covering physical and operational controls.
• Perform monthly access inventory assessments, including user recertification activities. • Address administrative and technical issues such as network or hardware incidents on an ad hoc basis.
• Coordinate monitoring and inspection of the Foshan secured room (monthly and as needed).
• Perform daily monitoring of security guard performance and escalate concerns when appropriate.
• Assist in implementing security control enhancements such as mobile device management (MDM), two-factor authentication (2FA), and ID verification improvements

To Succeed in this Role

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field.
• Minimum of 3 years of experience in information security, risk management, or a related role.
• Knowledge of network security principles and incident response procedures.
• Excellent analytical skills with the ability to assess security risks and implement effective mitigation strategies.
• Strong problem-solving abilities to address technical and administrative issues as they arise.
• Effective verbal and written communication skills to convey security policies and procedures clearly to stakeholders.

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

As a 'Manager, Information Security,' your main responsibilities will include:

• Overseeing the implementation and maintenance of the bank's information security systems.
• Conducting regular audits and risk assessments to ensure adherence to security protocols.
• Developing and implementing information security policies and procedures.
• Training and mentoring staff on information security best practices.
• Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
• Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
• Leading and coordinating information security projects across departments.
• Managing incident responses and investigations into security breaches.
• Staying updated on the latest trends and developments in information security.
• Reporting on the status of information security to senior management.

A Successful 'Manager, Information Security' Should Have

• A degree in Computer Science, Information Security, or a related field.
• Proven experience in a managerial role within the field of information security.
• Familiarity with information security regulations and standards in the financial services industry.
• Exceptional leadership and communication skills.
• The ability to handle sensitive information with discretion and integrity.

• A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
• Standard benefits package.
• The chance to work in a fast-paced, technology-driven environment within the financial services industry.
• Opportunities for career progression and professional development.
• A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

• Mid-Senior level

• Full-time

• Information Technology and Engineering

• Financial Services, Accounting, and Banking