IT Security Manager, Information Technology Responsibilities:
Manage ongoing operation/maintenance of security infrastructure and access control operations
Lead & manage security projects to deliver on time, within scope & within budget
Follow the security guidelines to conduct regular assessment on the systems, network and IT infrastructure
Review and approve security related requests according to the security control guideline
Review security log generated by various systems and security tools regularly in order to identify the gap against predefined policies, guidelines and Standard Operating Procedures (SOPs)
Own and support Bank's security tools (including Privileged ID system, Network-based
Intrusion Prevention/Detection System, Data Loss Prevention System, Anti-advanced Persistent Threat System and Data Center Security System) to ensure their operational and control effectiveness which complies the bank's requirement
Administrate security key and digital certificate.
ollow incident and change management process to handle security event and changes
Provide KPI with statistical data to demonstrate the operational effectiveness
Requirements:
Degree holder or above in Information Technology / Computer Science or equivalent
At least 5 years' experience in IT Infrastructure and/or IT Security Operations
Working experience in banking/Financial industry would be an added advantage
Possess recognized certificates of Enhanced Competency Framework for Banking Practitioners (e.g. CISA, CISSP, CISA, CRISC, CGEIT, CCSP, ITIL)
Good communication skills and command of both spoken and written English & Chinese
Effective interpersonal skills, hardworking, self-motivated, can work independently and under pressure
Good knowledge and understanding of modern security technology and operations
Familiar with IT service management life cycle will be an added advantage
Candidates with less experience but can demonstrate potential will be considered as Assistant IT Security Manager