top of page

Cybersecurity Threat and Vulnerability Manager - Leading Financial Firm

IT Security & Risk

14 April 2023

Hong Kong

Our client, one of the leading financial firms here in Hong Kong, is now keen to meet with and hire a strong Cybersecurity Threat and Vulnerability Manager to join the firm and be their subject matter expert in all areas of threat detection, remediation and protection of their infrastructure.

Excellent opportunity and team leadership responsibilities for the successful candidate to grow their career with one of the leading financial firms here in Hong Kong.

Responsibilities:


  • Plan and develop strategies to identify, protect, detect, and respond to threats to the organisation.

  • Understand profiling and behaviours/characteristics of threats to effectively design and execute threat hunting, and develop threat cases/scenarios.

  • Lead and coordinate cybersecurity, red and purple teams to identify gaps in security controls and recommend remediation.

  • Subject matter expert working closely with stakeholders in all threat intelligence matters; and provide advisory to Security Architects and Engineering teams to implement/fine-tune systems, configurations, the firm's security tools, vulnerability topics etc.

Requirements:


  • Bachelor's degree (or above) in Computer Science, IT or other related disciplines (e.g. Cybersecurity).

  • At least 6 to 8 years experience in Cybersecurity and a first-line role protecting critical infrastructure within the Banking / Financial Services.

  • Strong understanding and experience with MITRE ATT&CK and MITRE D3FEND frameworks for tactics/techniques/profiling, detection, and testing

  • Hands-on experience in threat handling, incident response, detection engineering and common security tools (vulnerability management scanner, SIEM, SOAR etc.)

  • Experience leading and managing a small team of technical security engineers

  • Excellent communication skills in English and Cantonese. Mandarin is a plus.

  • Achievements and qualifications including GPEN, OSCP, OSCE, OSEE and GCIH would also be an advantage.


bottom of page