Principal Security Specialist - IT (Security Operation Centre)
Job Responsibilities: - To perform security events analysis and forensic investigation
- To handle and manage security related incidents for escalation, notification, containment, eradication and recovery
- To develop and maintain security operations procedures and guidelines
- To develop and maintain security detection rules and corresponding response playbooks
- To develop security operations related management reports and metrics
- To develop plan and organize cyber security drills
- To response to emergency and non-emergency calls from internal users within HKEX
- To provide suggestion for better utilization of existing tools and adaptation of new tools for continuous operations and enhancement of SOC
Job Requirements: - High diploma or university degree in computer science or related disciplines
- In-depth knowledge and experience in ArcSight SIEM is preferred
- Holder of valid CISSP/CEH/CSA certification is an added advantage
- At least 8 years of relevant experience in IT, preferably in information security or security operation centre environment
- Knowledge and experience in security incident detection, incident response, malware analysis and forensic investigation
- Familiar with security technologies (such as SIEM, SOAR, UEBA, DLP, Antivirus, EDR, WAF, IPS/IDS, Anti-DDoS Services, PIM, Honeypot, Forensic Tools and Vulnerability Scanners)
- Familiar with Windows / Linux OS and TCP/IP networking protocols
- Familiar with cloud and emerging technologies (e.g. container, API, etc.)
- Confident, self-motivated and able to work under pressure
- Organize and able to develop clear procedures and guidelines
- On call support and working out of office hour is required
- Good inter-personal communication skills
- Fluent in English and Cantonese
Applicants who do not hear from us within 6 weeks may consider their applications unsuccessful. Personal data provided will only be used for the purpose of employment application to HKEX