Security Engineer / Security Team Lead - Assistant Vice President - Security Services - IT - 12months contract
Hong Kong Exchanges and Clearing
- Hong Kong
- Permanent
- Full-time
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."Job Summary: The Information Security Engineer is responsible for designing, building and maintaining enterprise IT security solutions to address the organization’s security requirements. Reporting to the Information Security Services Lead, this role will work closely with IT Innovation Lab, software engineering teams, IT infrastructure team, IT compliance, security operations and cyber technology risk team.Job Duties:ResponsibilitiesEngineer, implement and monitor security measures for the protection of computer systems, networks and informationIdentify and define system security requirementsDesign computer security architecture and develop detailed cyber security designsConfigure and troubleshoot security systems and infrastructure devicesDevelop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasksMaintain all solution design documentation, processes, procedures and report on metrics to demonstrate effective and efficient management of services.Work with handling service requests on security tool standard changes, such as proxy whitelisting requestsDelivery security service on-boarding such as security agent install, connecting systems to SIEMReview IT systems to ensure that they have met security acceptance criteria.Work with product vendors and suppliers to maintain and enhance existing security tooling and productsEnsure that the organization security tools can detect and help with the response to cyber security incidents.Document and validate disaster recovery testing for CyberSecurity tools.Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancementsSupport in managing the Total Cost of Ownership (TCO) for security solutions which includes new investments and business-as-usual financials.Design and execute processes to make BAU changes to security tools (eg web proxy changes, DLP mail rule changes, etc)Automate or script changes and validation processesRequirements:Proven work experience as a System Security Engineer or Information Security EngineerExperience in building, maintaining and operating security systems and platformsHands on experience in a number of security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, data loss prevention systems, web proxies, etcExperience with network security and networking technologies and with system, security, and network monitoring toolsThorough understanding of the latest security principles, techniques, and protocols (such as zero trust, etc)Problem solving skills and ability to work under pressureMust have strong information security technology knowledge/concepts and can effectively communicate with senior management and a broad range of technical/non-technical audiences. Strong written communication skills and verbal presentations to senior management.Must have a relevant University degree in Computer Science, Information Management, or related field, or equivalent experience.Good presentation, project planning and documentation skillsFamiliarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocolsFamiliarity with application, database and operating system securityFamiliarity with cloud security technologies (AWS or Azure is preferred)Familiarity with risk / control frameworks, such as Mitre ATT&CK, D3FEND, OWASP, NIST Cybersecurity FrameworkFamiliarity in scripting or automation is an added advantageFamiliarity with Identity and Lifecycle management is an advantagePrevious experience in regulated environments is an added advantageHKEX is committed as an Equal Opportunity Employer. Diversity is one of our core values and we look to support, respect diverse perspectives, abilities, culture and experiences within our workplace.Location: HKEX - TKOShift: Standard - 40 Hours (Hong Kong SAR)Scheduled Weekly Hours: 40Worker Type: Contract