Responsibilities

• Acting as a first line defence on the Information and Cyber security matters
• Conducting security solution design, selection, evaluation and implementation based on the procedures and guidelines of the Bank
• Acting as a key role in security operation matters including key management, privileged account management, patch management, threat detection and monitoring, system and network hardening and review, vulnerability scanning, application whitelisting, etc.
• Taking consultancy role in the monitoring of security control of IT operations
• Keeping track of the industrial security practices to identify potential area of enhancement on an ongoing basis

Requirements

• Degree holder in Computer Science or related discipline
• Minimum 5 years’ relevant working experience in IT Security, Information Security or IT Audit
• Solid experience in information / cyber security controls and review
• Solid experience in and understanding of regulatory requirements such as HKMA SPM, Cybersecurity Fortification Initiatives (CFI), SFC, PCI-DSS and etc.
• Familiar with the security practices on patch management, key / certificate management, privileged account management, vulnerability scanning, software / application whitelisting , APT protection, system hardening
• Solid knowledge, particularly of security features of firewall, router, switch, IPS/IDS, APT, VPN, Database, Window / Linux / AIX platforms

We offer successful candidates an attractive remuneration package. For Candidates who are willing to take up the challenge and build a bright career with us, please send a resume with a cover letter by e-mail at hrp@cmbwinglungbank.com.