What Jobs are available for Security Operations in Hong Kong?

Where Your Career Takes Flight
Airport Authority Hong Kong (AA) manages and operates Hong Kong International Airport, one of the finest and busiest airports in the world.

We now invite high calibre talent with creativity and passion to join us for a rewarding and meaningful career journey.

We care for our people and provide colleagues with a fair, open and supportive workplace.

By joining us, you will contribute to the continued success and growth of a key infrastructure and economic engine of Hong Kong, gaining invaluable experiences in a unique environment and enjoying boundless opportunities to unleash your full potential.

Together we will share the pride of our leadership status in the global aviation industry and our commitment to sustainability.

Responsibilities:

• Co-ordinate and oversee security-related projects, including but not limited to conducting security risk assessment and ensuring incorporation and implementation of appropriate security measures
• Conduct regular inspections of security operations at Hong Kong International Airport (HKIA) to ensure compliance with the established procedures & statutory requirements
• Ensure the effective and efficient operation of security systems and facilities to maintain a high standard of security integrity at HKIA
• Monitor on-site security performance to ensure quality services meet specified standards and manage non-performance cases
• Plan, co-ordinate and execute routine and ad hoc security operations and exercises, as well as respond to and support security incidents, assisting in incident recovery to minimise disruptions and enhance airport operations
• Proactively identify and analyse security issues, providing improvement plans to mitigate security risks through effective stakeholders engagement

Where Your Career Takes Flight

Airport Authority Hong Kong (AA) manages and operates Hong Kong International Airport, one of the finest and busiest airports in the world.

We now invite high calibre talent with creativity and passion to join us for a rewarding and meaningful career journey.

We care for our people and provide colleagues with a fair, open and supportive workplace.

By joining us, you will contribute to the continued success and growth of a key infrastructure and economic engine of Hong Kong, gaining invaluable experiences in a unique environment and enjoying boundless opportunities to unleash your full potential.

Together we will share the pride of our leadership status in the global aviation industry and our commitment to sustainability.

Responsibilities:

• Co-ordinate and oversee security-related projects, including but not limited to conducting security risk assessment and ensuring incorporation and implementation of appropriate security measures
• Conduct regular inspections of security operations at Hong Kong International Airport (HKIA) to ensure compliance with the established procedures & statutory requirements
• Ensure the effective and efficient operation of security systems and facilities to maintain a high standard of security integrity at HKIA
• Monitor on-site security performance to ensure quality services meet specified standards and manage non-performance cases
• Plan, co-ordinate and execute routine and ad hoc security operations and exercises, as well as respond to and support security incidents, assisting in incident recovery to minimise disruptions and enhance airport operations
• Proactively identify and analyse security issues, providing improvement plans to mitigate security risks through effective stakeholders engagement

Requirements:

• Degree holder in any disciplines with minimum 6 years working experience, preferably in airport operation, development planning, project management or other relevant industry
• Candidates with at least 2 years' supervisory experience in the aviation industry and knowledge of security are preferred
• Quick learner with good planning, organisational and execution skills
• Observant, customer-focused with good attention to details
• Good team player with good organisation skills and interpersonal skills
• Proactive and able to work under pressure and independently
• Good command of spoken and written English and Chinese (including Putonghua)
• Proficiency in MS Office Applications
• Possession of a valid HK driving license is an advantage

Space to make a transformative impact, career and life.

At Chinachem, we create space for every kind of brilliant, and define ourselves by our purpose and impact. Our people are the pulse of the business, and it's our entrepreneurial, vibrant culture that's at the heart of our success. We offer a workplace where talent is empowered to have positive impact.

Originate world-class, world-changing work and experiences that enhance regeneration, resilience and recognition. Share in the successes and rewards that we'll build as a team.

How you will make an impact:

Team Leadership & Management:

• Lead, supervise, and mentor on-site security teams across multiple locations.
• Drive team establishment, including recruiting, hiring, and onboarding new security personnel.
• Optimize and coordinate manpower deployment and resources across various sites to ensure adequate coverage and response capabilities.

Security Strategy & Policy:

• Develop, implement, and continuously refine comprehensive security policies, procedures, and protocols.
• Conduct thorough risk assessments and site vulnerability analyses to proactively identify and mitigate potential security threats.
• Manage the security budget, including the procurement of equipment and services, ensuring cost-effective solutions.

Operations & Incident Management:

• Oversee and monitor security systems, including video surveillance, access control, and alarm systems.
• Lead investigations into security incidents, complaints, breaches, or acts of misconduct; determine root cause and implement corrective actions to prevent recurrence.
• Develop and maintain detailed emergency response and business continuity plans for various scenarios (e.g., natural disasters, security threats).

Stakeholder Engagement & Training:

• Serve as the primary liaison with local law enforcement and emergency services agencies.
• Design and deliver regular security awareness training programs to empower employees to recognize and report security concerns.
• Prepare and present detailed reports on security performance, incidents, and audit findings to management.

Compliance & Audit:

• Conduct regular security audits and inspections to evaluate the effectiveness of all security measures and ensure compliance with established policies.

What we are looking for:

• Bachelor's degree in Security Management, Criminal Justice, Business Administration, or a related field is preferred.
• A minimum of 3 years of experience in security, property management, or a customer-facing service industry, with at least 1 year in a supervisory or managerial capacity.
• Previous experience in a disciplinary force (e.g., police, military, corrections) is a significant advantage.
• Non-degree holders with substantial, proven experience and a practical, logical approach to problem-solving will be considered.
• Demonstrated expertise in crisis management, risk assessment, and people management.
• Ability to work independently with strong leadership, discipline, and exceptional communication and presentation skills.
• Proficient in written and spoken English and Chinese.
• Strong computer skills, including fluency in Microsoft Office Suite (Word, Excel, Outlook).
• Able to work under pressure and required to work on Saturday, Sunday & Public Holiday.

At Chinachem, we share a singular vision: "Places with Heart." This binds us together in enriching the lives of People, driving Prosperity and protecting our Planet in order to deliver lasting commercial, social and environmental benefits. We encourage all of us to do good and engage with our communities through our CCG Hearts Loyalty Programme. Yet, while united in purpose, we deeply respect individual differences and champion diversity and inclusion throughout our organisation. In the year 2022/23, over 42% of our management positions are held by women. As an equal opportunity employer and a proud signatory of "The Racial Diversity & Inclusion Charter for Employers," we warmly welcome applicants from all backgrounds to join the Chinachem family.

We offer a comprehensive package that mirrors our genuine appreciation for the contributions you're set to make. Should our collective purpose align with your personal and professional aspirations, we invite you to be a part of our transformative journey. Forward your full resume, highlighting both current and expected remuneration and your earliest availability, to our Human Resources Manager at Chinachem Group, 35-38 Floor, Tower 2, Nina Tower, 8 Yeung Uk Road, Tsuen Wan, N.T. For those preferring a streamlined approach, the "Apply now" option is just a click away.

We give every application the attention it deserves. However, if you haven't received a response within 8 weeks, please understand that we might be looking for a different fit at this time.

The personal data you provide will be treated with the utmost confidentiality and used solely for recruitment purposes. While the provision of full and complete information is necessary for our selection process, sharing your personal details is a voluntary decision. Failure to provide any of the requested data may impact the processing and outcome of your application. However, we assure you that all personal information shared during this journey will be retained for 24 months and then subsequently erased. Where there are suitable vacancies in our subsidiaries or associate companies during that period, we may transfer your application to them for consideration of employment, but only with your prior consent.

We strictly adhere to all applicable data protection laws and regulations, including the Personal Data (Privacy) Ordinance. Your personal data will not be disclosed to any third parties for other unrelated purposes without your prior consent. Applicants have the right to request access to and correction of their personal data collected. To do so, please submit your request in writing to the HR Department at Chinachem Group by emailing with the subject line 'Personal Data Access Request.' You may also submit your request directly to the Human Resources Department at 35-38/F, Nina Tower, 8 Yeung Uk Road, Tsuen Wan, New Territories, Hong Kong.

In creating Places with Heart, we prioritise empowering our people to make a transformative impact, career and life.

Join our fast-paced team as a
Senior Security Operations Specialist
, contributing to global security operations across various entities at the group level. In this role, you'll utilize advanced tools for threat detection, incident response, and proactive security measures, ensuring robust protection against emerging cyber threats.

Responsibilities

• Utilize cybersecurity tools like SIEM, EDR, and SOAR for effective threat management.
• Stay updated on emerging cyber threats, vulnerabilities, and mitigation techniques.
• Lead incident response, management, and investigations.
• Conduct purple team exercises and threat hunting to identify risks.
• Analyze threat actors and their tactics through detailed research.
• Perform malware analysis to prevent future attacks.
• Oversee actionable Threat Intelligence (TI) collection and execution.
• Propose and implement security initiatives to combat emerging threats.
• Develop and update playbooks and documentation for security processes.
• Provide expertise in creating and maintaining security frameworks and policies.
• Evaluate new software or products for security projects.
• Promote security awareness and conduct role-based training.
• Communicate cybersecurity risks effectively to stakeholders.

Requirements

• Must have 5-8 years of experience in Information Security with hands-on expertise in Security Engineering, Operations, Cyber Threat Intelligence, Digital Forensics, Incident Response, Endpoint, or Cloud Security.
• Must be skilled with security event tools and incident response within a blue team context.
• Nice to have: Experience in Red Teaming and Penetration Testing (PenTest), as well as in-house security operations.
• Proficient with SIEM, EDR, SOAR, Vulnerability Management, and Open-Source Tools.
• Familiar with cloud environments such as AWS, Azure, and GCP.
• Knowledge of malware reverse-engineering techniques.
• Proficient in one coding language (Python, Java, etc.).
• Strong understanding of the MITRE ATT&CK framework.
• Relevant certifications like OSCP, OSEP, GCFA, GCIH, CISSP, etc.
• Professional English proficiency; Chinese is a plus.

About OSL

As a subsidiary of the publicly listed OSL Group (HKEX: 863.HK), OSL Digital Securities is Hong Kong's first and most established SFC-licensed and insured digital asset platform. Operating since 2018, the platform provides institutional-grade digital asset services to corporations, financial institutions, professional and retail investors.

OSL Core values:

Be customer-centered

Be a high-performing team

Be relentlessly innovative

Be direct

Be an owner

Be geared toward action

Be compliant

Cathay Pacific

Digital & Information Technology

Information Technology Department

Contract

Hong Kong SAR (China)

Application deadline: 16 Oct 2025

Reports To: IT Security Operations Senior Lead

This role is part of the Information Technology Department, committed to delivering peace of mind and building trust through world-class cybersecurity operations.

As the IT Security Operations Analyst, you will uphold the highest standards in protecting digital assets and responding to security threats.

You will provide proactive monitoring, incident investigation, and threat response across various digital platforms to ensure a secure and resilient technology environment. You will help interpret risks, recommend solutions, and support secure business operations.

With your passion for cybersecurity and strong analytical mindset, you will be placed in one of three specialist teams—Threat Monitoring, Vulnerability Management, or Security Engineering—where you will grow into a multi-skilled professional through a structured career development plan.

• Executing all IT security operations solutions administration and operations work, such as endpoint security, network security, privileged access management solution, cloud security monitoring, and software-as-a-service security solutions
• Reviewing and approving different IT security requests
• Maintaining good hygiene on IT security footprint within company's technology network
• Applying basic knowledge to perform threat hunting process to respond to emerging threat landscape
• Working with different business units and extended technology teams to overcome various IT security challenges
• Collaborating with third-party vendors providing services to support incident response
• Coordinating with external security operation services, such as managed defense model and offshore engineering service
• Participating in incident investigation and forensic work
• Supporting audit functions including evidence collection and updates, and implementing suggested controls
• Assisting others in educating security events and implications, and developing documentation to support the incident response process

• Bachelor Degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
• 6 years' IT experience, and 3 years relevant IT security experiences is preferred
• CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience preferred.
• IT security incident investigation and relevant forensic knowledge
• Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
• Strong team development and coaching skills
• Self-motivation, willing to keep update to market standards and technology

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our Applicant Personal Information Collection Statement and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. We keep records of your data for no longer than is necessary for the purpose for which we obtained them and any other permitted linked purposes. If your application is unsuccessful, we will keep your details on file for as long as is necessary to process your application or for the purposes of further job opportunities if you agree to such longer periods.

Role Introduction

Reports To: IT Security Operations Senior Lead

Department:Information Technology Department(IMT)

This role is part of the Information Technology Department, committed to delivering peace of mind and building trust through world-class cybersecurity operations.

As the IT Security Operations Analyst, you will uphold the highest standards in protecting digital assets and responding to security threats.

You will provide proactive monitoring, incident investigation, and threat response across various digital platforms to ensure a secure and resilient technology environment. You will help interpret risks, recommend solutions, and support secure business operations.

With your passion for cybersecurity and strong analytical mindset, you will be placed in one of three specialist teams—Threat Monitoring, Vulnerability Management, or Security Engineering—where you will grow into a multi-skilled professional through a structured career development plan.

Key Responsibilities

• Executing all IT security operations solutions administration and operations work, such as endpoint security, network security, privileged access management solution, cloud security monitoring, and software-as-a-service security solutions
• Reviewing and approving different IT security requests
• Maintaining good hygiene on IT security footprint within company's technology network
• Applying basic knowledge to perform threat hunting process to respond to emerging threat landscape
• Working with different business units and extended technology teams to overcome various IT security challenges
• Collaborating with third-party vendors providing services to support incident response
• Coordinating with external security operation services, such as managed defense model and offshore engineering service
• Participating in incident investigation and forensic work
• Supporting audit functions including evidence collection and updates, and implementing suggested controls
• Assisting others in educating security events and implications, and developing documentation to support the incident response process

Requirements

• Bachelor Degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
• 6 years' IT experience, and 3 years relevant IT security experiences is preferred
• CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience preferred.
• IT security incident investigation and relevant forensic knowledge
• Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
• Strong team development and coaching skills
• Self-motivation, willing to keep update to market standards and technology

Application Deadline: 16 Oct 2025

Personal & Application Information

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our Applicant Personal Information Collection Statement and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. We keep records of your data for no longer than is necessary for the purpose for which we obtained them and any other permitted linked purposes. If your application is unsuccessful, we will keep your details on file for as long as is necessary to process your application or for the purposes of further job opportunities if you agree to such longer periods.

*Terms and Conditions Apply

For any frontline recruitment related enquiries, please reach out to us by Whatsapp

Job Purpose

This role involves the security policy and governance, security operation, infrastructure security monitoring, certificate and key management, and audit support and compliance.

Main Responsibilities

Security Policy and Governance:

• Develop, implement and maintain information security policies and procedures, and security configuration baselines.

Security Operation:

• Perform regular and ad-hoc security acceptance test on severs, network and security devices, databases against the established security configuration baselines.
• Perform regular security policy and ruleset review (including firewalls and other security tooling) to ensure only security protocols, ports and services are enabled and obsolete/redundant rules are timely removed.
• Monitor and manage security tools and systems (e.g., IDS/IPS, endpoint protection).
• Respond to security incidents and coordinate with relevant teams for resolution

Infrastructure Security and Monitoring:

• Configure and maintain security tooling (including for examples, end point detection and response, security incident and event management) for servers and endpoints
• Periodically check log for data leakage protection and endpoint protection for servers in data centres
• Implement and manage Splunk rulesets for log consolidation, monitoring, and security event review.

Certificate and Key Management:

• Manage lifecycle of digital certificates and encryption keys, including renewal, revocation, and secure storage.

Audit Support & Compliance:

• Take ownership of audit-related activities, including gathering reports and compiling evidence.
• Ensure timely and accurate delivery of audit materials and responses.

Requirements

Education and Qualification:

• A bachelor's degree / diploma in computer science, information technology, or a related field is often preferred.
• Possess one or more certificates in : CISSP / CISA / CISM / CCSP

Work Experience:

• Minimum 5-8 years of relevant experience in IT security, infrastructure security, or a similar role.
• Experience in banking industry is preferred.

Technical Skills:

• Experience supporting audit and compliance processes (e.g., internal/external audits, regulatory reviews).
• Strong understanding of network and infrastructure security, security policy frameworks and regulatory standards (e.g., ISO 27001, HKMA, SFC)

Personal Skills:

• Strong analytical and problem-solving skills.
• Excellent communication and documentation abilities.
• Ability to work independently and in a team-oriented environment.
• Commitment to continuous learning and professional development.

Please note that only shortlisted candidates will be notified.

Cathay Pacific

Digital & Information Technology

Information Technology Department

Permanent

Hong Kong SAR (China)

Application deadline: 29 Sep 2025

Reports To: IT Security Operations Senior Lead

This role is part of the Information Technology Department, committed to delivering peace of mind and building trust through world-class cybersecurity operations.

As the IT Security Operations Analyst, you will uphold the highest standards in protecting digital assets and responding to security threats.

You will provide proactive monitoring, incident investigation, and threat response across various digital platforms to ensure a secure and resilient technology environment. You will help interpret risks, recommend solutions, and support secure business operations.

With your passion for cybersecurity and strong analytical mindset, you will be placed in one of three specialist teams—Threat Monitoring, Vulnerability Management, or Security Engineering—where you will grow into a multi-skilled professional through a structured career development plan.

• Executing all IT security operations solutions administration and operations work, such as endpoint security, network security, privileged access management solution, cloud security monitoring, and software-as-a-service security solutions
• Reviewing and approving different IT security requests
• Maintaining good hygiene on IT security footprint within company's technology network
• Applying basic knowledge to perform threat hunting process to respond to emerging threat landscape
• Working with different business units and extended technology teams to overcome various IT security challenges
• Collaborating with third-party vendors providing services to support incident response
• Coordinating with external security operation services, such as managed defense model and offshore engineering service
• Participating in incident investigation and forensic work
• Supporting audit functions including evidence collection and updates, and implementing suggested controls
• Assisting others in educating security events and implications, and developing documentation to support the incident response process

• Bachelor Degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
• 6 years' IT experience, and 3 years relevant IT security experiences is preferred
• CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience preferred.
• IT security incident investigation and relevant forensic knowledge
• Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
• Strong team development and coaching skills
• Self-motivation, willing to keep update to market standards and technology

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our Applicant Personal Information Collection Statement and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. We keep records of your data for no longer than is necessary for the purpose for which we obtained them and any other permitted linked purposes. If your application is unsuccessful, we will keep your details on file for as long as is necessary to process your application or for the purposes of further job opportunities if you agree to such longer periods.

Role Introduction

Reports To: IT Security Operations Senior Lead

Department: Information Technology Department

This role is part of the Information Technology Department, committed to delivering peace of mind and building trust through world-class cybersecurity operations.

As the IT Security Operations Analyst, you will uphold the highest standards in protecting digital assets and responding to security threats.

You will provide proactive monitoring, incident investigation, and threat response across various digital platforms to ensure a secure and resilient technology environment. You will help interpret risks, recommend solutions, and support secure business operations.

With your passion for cybersecurity and strong analytical mindset, you will be placed in one of three specialist teams—Threat Monitoring, Vulnerability Management, or Security Engineering—where you will grow into a multi-skilled professional through a structured career development plan.

Key Responsibilities

• Executing all IT security operations solutions administration and operations work, such as endpoint security, network security, privileged access management solution, cloud security monitoring, and software-as-a-service security solutions
• Reviewing and approving different IT security requests
• Maintaining good hygiene on IT security footprint within company's technology network
• Applying basic knowledge to perform threat hunting process to respond to emerging threat landscape
• Working with different business units and extended technology teams to overcome various IT security challenges
• Collaborating with third-party vendors providing services to support incident response
• Coordinating with external security operation services, such as managed defense model and offshore engineering service
• Participating in incident investigation and forensic work
• Supporting audit functions including evidence collection and updates, and implementing suggested controls
• Assisting others in educating security events and implications, and developing documentation to support the incident response process

Requirements

• Bachelor Degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
• 6 years' IT experience, and 3 years relevant IT security experiences is preferred
• CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience preferred.
• IT security incident investigation and relevant forensic knowledge
• Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
• Strong team development and coaching skills
• Self-motivation, willing to keep update to market standards and technology

Application Deadline: 29-Sep-2025

Personal & Application Information

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our Applicant Personal Information Collection Statement and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. We keep records of your data for no longer than is necessary for the purpose for which we obtained them and any other permitted linked purposes. If your application is unsuccessful, we will keep your details on file for as long as is necessary to process your application or for the purposes of further job opportunities if you agree to such longer periods.