Job Description

Job Purpose:

The role is responsible for performing security configuration reviews, onboarding and maintaining security monitoring tools, and conducting ongoing assessments of firewall and infrastructure security. The incumbent supports the bank’s security operations by ensuring IT assets comply with security baselines, monitoring rules are properly implemented, and security controls remain effective.

Main Responsibilities:

Security Hardening & Baseline Compliance

• Conduct regular security hardening configuration scans on IT assets including but not limited to operating systems, network and security devices, databases, and web application servers, based on defined security configuration baselines and checklists.

• Compile security hardening reports and follow up with internal stakeholders to ensure remediation is completed within defined timelines.

Security Tooling Onboarding and Maintenance

Onboard new IT assets to security tooling platforms (e.g., Endpoint Detection and Response (EDR)), including installation, configuration, and ensuring compliance with baseline security requirements.

Security Information and Event Management (SIEM) Operations

• Install and configure the SIEM tool for monitoring and log collection.

• Generate monitoring reports based on defined SIEM rulesets.

• Enhance, update, and implement SIEM monitoring rules to strengthen security event detection.

• Respond to security incidents and coordinate with relevant teams for resolution.

Firewall Security Configuration Review

Perform firewall security configuration checks, including review of access policies, rule effectiveness (e.g., zero‑hit rules, redundant or shadowed rules, high‑risk rules), and secure protocol usage to ensure adherence to security standards.

Incumbent Requirements:

Education and Qualification

• A bachelor's degree / diploma in computer science, information technology, or a related discipline is preferred.

• Possess at least one ECF-Cybersecurity recognized certificates listed below, or an equivalent qualification:

ISC2 Certified Information Security Professional (CISSP)

ISACA Certified Information System Auditor (CISA)

ISACA Certified Information Security Manager (CISM)

ISC2 Certified Cloud Security Professional (CCSP)

Work Experience

• Minimum 5 years of relevant experience in IT security, infrastructure security, or a similar role.

• Experience in banking industry is preferred.
  
  

Technical Skills

Strong understanding of network and infrastructure security, security policy frameworks and regulatory standards (e.g., ISO 27001, HKMA, SFC)

Personal Skills

• Strong analytical and problem-solving skills.

• Excellent communication and documentation abilities.

• Ability to work independently and in a team-oriented environment.

• Commitment to continuous learning and professional development.