Cyber Incident and Network Security Manager - Leading Financial Institution

Pinpoint Asia

  • Hong Kong
  • Permanent
  • Full-time
  • 7 days ago
Our client, a leading insurance and financial services provider in Asia, is seeking a Cyber Incident Manager to oversee cybersecurity incident responses and support infrastructure security. The role involves coordinating incident management efforts, ensuring timely resolution, and maintaining security compliance. Key responsibilities include managing firewall and WAF policies, documenting incidents, and staying informed on emerging threats. Success in this position requires strong communication and organizational skills, along with the ability to collaborate effectively with internal teams to maintain robust cyber defenses.Responsibilities:
  • Serve as the liaison between the Group Cybersecurity Team and internal departments, ensuring seamless communication.
  • Track, document, and ensure the timely resolution of cybersecurity incidents, escalating critical issues to management and technical teams when necessary.
  • Provide comprehensive incident reports and post-incident summaries, adhering to established incident response frameworks such as NIST, SANS, and ITIL.
  • Maintain accurate records of security changes and incident resolutions, and be available during non-office hours for urgent security incidents.
  • Stay informed about emerging cyber threats and infrastructure security risks, assisting in coordinating emergency response efforts when needed.
  • Conduct thorough reviews and validations of firewall rule change requests to ensure compliance with security standards. Collaborate with IT teams to optimize firewall rules and minimize unnecessary access.
  • Assist in managing and tuning Web Application Firewall (WAF) policies to safeguard web applications, supporting troubleshooting and resolving WAF-related issues.
  • Ensure that security controls for network and cloud infrastructure align with security policies.
  • Support audits, risk assessments, and contribute to continuous security improvements.
Experience:
  • University Degree in Computer Science, Information Technology, or a related field.
  • Relevant industry certifications such as CISSP, GIAC, or equivalent are preferred.
  • At least 5 years of experience in cybersecurity incident management and infrastructure security.
  • Proficient in firewall rule management and security best practices.
  • Knowledgeable about Web Application Firewalls (WAF) and web security principles.
  • Familiar with network security concepts, including firewalls, IDS/IPS, VPNs, and cloud security.
  • Basic understanding of security frameworks like NIST, CIS, and ISO 27001.
  • Relevant certifications such as CISSP, CISA, CISM, CEH, GIAC GCIH, or CCNP Security are preferred.
  • Excellent communication skills, capable of translating technical information for diverse audiences.
  • Fluent in written and spoken English and Chinese.
  • Strong coordination skills, detail-oriented, with an emphasis on documentation and reporting.
  • Confident, trustworthy, and able to work independently with initiative in problem-solving environments.
All applications applied through our system will be delivered directly to the advertiser and privacy of personal data of the applicant will be ensured with security.

CTgoodjobs