Senior Security Engineer – Assistant Vice President - Information Security – IT – 12months Contract

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:

The Senior Security Engineer is part of HKEX Information Security function, playing a key role in enhancing the organization security posture. Incumbent is responsible for the design, build, operate and evolve the enterprise IT security solutions to address the organization’s security requirements and engaging with key stakeholders to provide critical security services.
You play a key role in protecting the organization.

Job Duties:

Responsibilities:

• Assist Team Lead to oversee the security services team’s managing of user requests (SSRs) and routine operation tasks for quality and user satisfaction.
• Draft and maintain up-to-date   documentation including standard operation procedures (SOP), maintenance manuals and knowledge base (KB) using Confluence and SharePoint.
• Manage the engagement with level 1 support (ESO) for 24/7 monitoring and response to security tools events or alerts, and playbook enhancement, organize level 2 on-call schedule and escalation procedures.
• Manage endpoint security system’s rules and exception processes including application control, EDR, MDE etc.
• Manage security technologies, like SAST code scanner, DAST, CSPM systems, ensure seamless integration with CI/CD pipelines and effective monitoring on vulnerabilities.
• Support privileged user access management, effectively prevent and remediate issues, and provide management reporting.
• Support system uplift and capacity expansion to maintain optimal system performance, system availability and alignment with strategy and roadmap.
• Lead asset inventory management including systems, hardware, software, licenses etc. in ServiceNow to maintain information accuracy.
• Manage standard change management practices to improve quality and efficiency of security operations.
• Enable the development and adoption of new automation use-cases, workflows, methodologies and tools for quality and minimizing human error risk.
• Oversee contract renewals to ensure service levels are met and in line with company objectives.
• Independently manage work on assigned tasks, while taking lead to identify and address areas for improvement.

 
Requirements:

• University degree in Computer Science, Information Management, or related field, or equivalent experience. Proven work experience as a System Security Specialist or Information Security Engineer.
• Minimum of 8 years of experience in security engineering  ..
• Proven experience in managing security tools and implementing security processes.
• Strong understanding of infrastructure security technologies, including endpoint security, code scanning, security posture management, privileged user access management.
• Experience with common automation tools i.e. Ansible, Terraform.  
• Excellent documentation skill in English is a must.
• Strong vendor management and contract negotiation skills.
• Familiarity with risk / control frameworks, such as Mitre ATT&CK, D3FEND, OWASP, NIST Cybersecurity Framework is an added advantage 
• Ability to work effectively under pressure in a fast-paced environment.
• Strong problem-solving skills and ability to make decisions in high-stress situations.
• Relevant certifications such as CISSP, CISM, CCSP or equivalent are highly desirable.

HKEX is committed as an Equal Opportunity Employer. Diversity is one of our core values and we look to support, respect diverse perspectives, abilities, culture and experiences within our workplace.

Location:

HKEX - TKO

Shift:

Standard - 40 Hours (Hong Kong SAR)

Scheduled Weekly Hours:

40

Worker Type:

Contract