Job Description

The role is responsible for administering the Bank’s Identity and Access Management (IAM) platform and managing key security technologies including Data Loss Prevention (DLP), antivirus/anti malware, Endpoint Detection & Response (EDR), and Network Access Control (NAC). The position ensures secure access, strong endpoint protection, and compliance with HKMA regulatory requirements while supporting daily operations and continuous improvement of the bank’s security posture.

Key Responsibilities
Identity & Access Management (IAM) Administration
• Manage user lifecycle processes including onboarding, offboarding, access provisioning, and periodic access reviews.
• Administer IAM systems such as AD, Azure AD, PAM, SSO, MFA, and privileged access workflows.
• Maintain role based access control (RBAC) models and ensure least privilege principles.
• Conduct regular entitlement and access reviews and support internal/external audits.
• Administer and maintain DLP policies, rules, alerts, and incident workflows.
• Manage antivirus/anti malware platforms, ensuring signature updates, health monitoring, and incident response.
• Operate EDR solutions, triage alerts, investigate suspicious activity, and coordinate remediation with IT teams.
• Manage NAC solutions including device profiling, network access policies, and compliance enforcement.
• Perform tuning, rule optimisation, and continuous improvement across all security tools.
• Monitor security alerts from IAM, DLP, EDR, antivirus, and NAC platforms.
• Investigate security events, document findings, and escalate incidents as required.
• Prepare operational reports, dashboards, and metrics for management review.
• Support incident response activities and collaborate with SOC, IT operations, and application teams.
• Maintain documentation, SOPs, and configuration baselines for audit readiness.
• Support regulatory inspections, internal audits, and external assessments by providing evidence and explanations.
• Participate in risk assessments for new systems, access models, and security tool enhancements.
• Identify opportunities to strengthen access governance, endpoint protection, and data security controls.
• Assist in tool upgrades, new feature enablement, and integration with SIEM/SOAR platforms.
• Stay updated on emerging threats, vulnerabilities, and best practices in IAM and endpoint security.
• Contribute to automation initiatives to streamline access management and security operations.

Qualifications & Experience
• Bachelor’s degree in Information Security, Computer Science, or related field.
• 3–7+ years of experience in IAM administration or security operations.
• Hands on experience with IAM platforms (AD, Azure AD, PAM, MFA), DLP, antivirus, EDR, and NAC tools.
• Strong understanding of access governance, endpoint security, and network security fundamentals.
• Possession of relevant HKMC ECF core level certifications.