The Job

1、Provide professional security advisory service to customers by designing and proposing security solutions meeting customer's objectives

2、Understand customer's IT challenges and security requirements; and provide suggestions and comments to development team from technical and pre-sales perspectives of information security

3、Directs an ongoing, proactive risk assessment program for all new and existing systems and business processes; communicates risks and recommendations to mitigate risks to the senior management in term of non-technical and cost/benefit for decision making

4、Ensures vulnerabilities are managed by directing periodic vulnerability scans of servers connected to Company's networks; and support other department to ensure regulatory compliance in areas of ISO 27001 and PCI DSS

5、Evaluates security incidents and determines what response, if any, is needed and coordinates Company's responses when sensitive information is breached

6、Assist and conduct security risk assessment & audit for both internal and customers

The Person

1、Degree holder or above in Computer Science / Information Technology or related disciplines, or with qualification equivalent to Level 5 of Hong Kong Qualifications Framework (QF)

2、4-5 years of varied information technology experience on computer and networking infrastructure, operating systems, application software development, project management, regulatory compliance, and risk management

3、Good knowledge and experience in security planning and design with different technologies / solution

4、Professional certification (CISSP, CCSK, CCSP, CISA, CISM, etc.) is preferred

5、At least one of the CISSP, ISO/IEC27001 LA, CISM and CEH

6、Effective verbal and written communication skills and proficiency in writing technical specifications are required

7、Proficient in written and spoken English and Chinese

8、Creatively and critical thinking, responsible

9、Office: 27/F, Tower1, The Millennity, 98 How Ming Street, Kwun Tong, Kowloon, Hongkong