Our Client:
Our banking client is currently seeking a suitable applicant to join their IT Security team. The candidate is responsible for:
Responsibilities:
- Develop, implement, and maintain comprehensive security administration policies and procedures, including identity and access management.
- Oversee the security posture of all IT infrastructure components, ensuring compliance with corporate security policies and industry best practices.
- Extend compliance oversight to IoT devices, including CCTV systems and door access control technologies.
- Collaborate with facilities and operations teams to integrate physical and digital security controls.
- Manage the lifecycle of TLS/SSL certificates, including issuance, renewal, revocation, and secure storage.
- Lead and coordinate audit-related activities, including evidence collection, report generation, and drafting responses.
- Ensure timely and accurate delivery of audit materials to both internal and external auditors.
- Support compliance initiatives across cybersecurity, data privacy, and operational risk domains.
Requirements:
- Bachelor’s degree/diploma in Computer Science, Information Technology, or a related field preferred.
- Certifications such as CISSP, CISA, or CISM are essential.
- Minimum of 5 years of relevant experience in IT security or infrastructure security, preferably within the banking industry.
- Experience in supporting audit and compliance processes (e.g., internal/external audits, regulatory reviews).
- Strong understanding of network and infrastructure security frameworks and regulatory standards (e.g., ISO 27001, HKMA, SFC).