Cyber Security Specialist (Vulnerability Management)
Hong Kong (SAR)
Mox Bank
With Mox, every day counts as we’re here to help you grow your money, your world, your possibilities. Join Generation Mox now to experience a new way of smarter banking, saving and spending.
Cyber Security Specialist (Vulnerability Management)
Mox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.
Why Mox
Everything at Mox – from our products, features, to rewards – is designed based on customer research, tailor made for your needs. We care about what customers care about, especially in data security and privacy. Data ethics is core to everyone here at Mox. Mox rewards you with an array of banking and lifestyle benefits. Who says banking can’t be fun?
Application Deadline: 7 July 2025
Department: Technology-CDSIO
Employment Type: Permanent - Full Time
Location: Hong Kong (SAR)
Description
About MoxMox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.
Why Mox
Everything at Mox – from our products, features, to rewards – is designed based on customer research, tailor made for your needs. We care about what customers care about, especially in data security and privacy. Data ethics is core to everyone here at Mox. Mox rewards you with an array of banking and lifestyle benefits. Who says banking can’t be fun?
Responsibilities
- Oversee the vulnerability management lifecycle, encompassing patch management and associated risk assessments to ensure the timely and effective remediation of identified vulnerabilities
- Triage, report, and follow up on security findings from various tools and sources
- Review and report on cyber threats affecting key vendors and/or solutions, providing actionable insights for risk mitigation
- Collaborate with key vendors to address vulnerability concerns and ensure compliance with security standards
- Manage vulnerabilities in the development lifecycle, including, dependency vulnerability management and SAST findings
- Manage findings from penetration testing and security assessments, ensuring timely remediation and process improvements
- Develop and deliver security awareness training related to patch and vulnerability management
- Design, implement and maintain automations to streamline vulnerability management processes
- Provide metric reporting on vulnerability and patch compliance
- Create, maintain, and uplift process documentation pertaining to vulnerability management
- Develop and maintain relationships with technology teams, ensuring effective communication and collaboration on vulnerability management initiatives
- Stay up-to-date with emerging threats, vulnerabilities, and technologies, applying this knowledge to continuously improve our vulnerability management program
Requirements
- Passion for cyber security, vulnerability management and working with highly technical team members
- Deep understanding of vulnerability identification, risk classification, and software security principles
- Being able to translate complex technical scenarios, cyber security specific threats, and related mitigating controls into a language that stakeholders at all levels can understand
- Strong knowledge of risk management guidelines and frameworks
- Proven experience in managing vulnerabilities throughout their lifecycle, from identification to remediation
- Ability to act calmly and competently in high-pressure, high-stress situations
- Must be a critical thinker, with strong problem-solving skills and analytical skills
- Excellent time management skills and ability to manage multiple projects under strict timelines
- Development and automation experience in one or more programming languages (e.g., Python, Bash, etc) are required
- Previous experience working in a cloud environment is highly desired
- Ability to contribute in a team environment
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Tags: Automation Banking Bash Cloud Compliance Pentesting Privacy Python Risk assessment Risk management SAST Security assessment Security Assessment Report Vulnerabilities Vulnerability management
Region:
Asia/Pacific
Country:
Hong Kong
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsProduct Security Engineer jobsSenior Cybersecurity Engineer jobsSenior Security Analyst jobsSystems Administrator jobsCybersecurity Editor jobsSenior Information Security Analyst jobsCybersecurity Content Editor jobsCyber Security Specialist jobsInformation Security Manager jobsIT Security Analyst jobsSenior Network Security Engineer jobsChief Information Security Officer jobsSenior Information Security Engineer jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsIT Security Engineer jobsSecurity Specialist jobsSenior Product Security Engineer jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Cyber Security Engineer jobsSecurity Operations Analyst jobsSenior Software Engineer jobsCyber Security Architect jobs
TS/SCI jobsEDR jobsJava jobsCEH jobsEncryption jobsThreat detection jobsSplunk jobsSDLC jobsTop Secret jobsTerraform jobsMalware jobsIDS jobsSOC 2 jobsRMF jobsSQL jobsIPS jobsFinance jobsForensics jobsDocker jobsCompTIA jobsIntrusion detection jobsActive Directory jobsOWASP jobsITIL jobsVPN jobs
Ansible jobsCRISC jobsIT infrastructure jobsTCP/IP jobsClearance Required jobsHIPAA jobsGIAC jobsDoDD 8570 jobsOSCP jobsIndustrial jobsSOAR jobsMITRE ATT&CK jobsBanking jobsCCSP jobsDNS jobsZero Trust jobsSOX jobsData Analytics jobsJira jobsArtificial Intelligence jobsCISO jobsJavaScript jobsNIST 800-53 jobsMachine Learning jobsGCIH jobs