More jobs from this company

We are a consortium of over 30 banks in Hong Kong and Macau, and operating an inter-bank Automated Teller Machine (“ATM”) network, Internet Payment Gateway Service and Mobile Payment Service for our member banks. We have been a certificate holder of ISO 27001 and compliant with Payment Card Industry Data Security Standard ("PCI DSS") for more than 8 years. Please visit for more information.

Assistant Manager - Cybersecurity



Governance and Compliance


  • Enforce information security policy and standards on physical and logical controls
  • Design, develop, implement and maintain security architecture to ensure the compliance with government regulations and international standards such as HKMA, ISO27001, PCI DSS, etc.
  • Perform security risk assessment and advise risk mitigation measures to reduce risk exposure in IT application and infrastructure
  • Work with internal and external auditors on various compliance standards e.g. ISO27001, PCI and HKMA
  • Assist to formulate the security policies, standards and procedures
  • Perform Periodic Security Review


Security Management


  • Monitor performance managed security services and work with Infrastructure team to rectify issues
  • Work with service provider to conduct incident response, threat hunting and forensic investigation
  • Conduct or manage service provider to conduct vulnerability assessment and penetration test
  • Work with internal and extern party to support system drill
  • Provide emergency support for security issues when an event occurs

Security Project


  • Take part in security solution evaluation and monitor implementation
  • Prepare security paper for new product or services
  • Work with vendors to understand the up-to-update related security technology for the possible implementation of projects



  • Possess a bachelor degree in information technology, information systems or equivalent
  • At least 3 years’ experience in information security, preferably in financial industry 
  • One or more of the following qualifications: CISSP, CISA, CISM, CEH or the like
  • Knowledge of ISO27001, PCI, pentest and vulnerability assessment, system and network security, preferably with exposure in security solution. E.g. APT, PAM, Encryption, SIEM
  • Good verbal communication and written skill
  • Good command of written and spoken English and Chinese


We offer competitive remuneration package and career prospects to the right candidate. Salary will be commensurate with qualifications and experience. Our attractive remuneration package includes 5-day work week, year-end bonus, performance bonus, dental and medical benefits, employer voluntary contributions to MPF, education allowance, staff well-being sponsorship, birthday leave, marriage leave, family care leave, etc.

Interested candidates please send your full resume stating contact details, current and expected salary by clicking “”.

Personal data collected will be used for recruitment purpose only. We are an equal opportunity employer.

Job level Middle
Work Exp. 3 Years
Education Bachelor Degree
Location Hong Kong, Wanchai
Employment type Permanent
Benefits 5-day week , Dental plan , Education subsidies , Medical plan , MPF , Performance bonus , Special / extra leave , Year-end bonus
Industry Information Technology
Job function Information Technology (Security / Audit)
Information Technology (Technical Writing / Consulting)
Information Technology (Testing)
Published On 03/05/2019