We are seeking a highly motivated and skilled Information Security Engineer to join our dynamic team in Hong Kong. This is a full-time, hybrid role where you will play a critical part in protecting our digital assets and infrastructure. The successful candidate will be instrumental in designing, implementing, and maintaining robust security measures across our systems, ensuring compliance with industry standards and best practices, and contributing to a secure operational environment.
As an Information Security Engineer, your responsibilities will include:
- Designing, implementing, and monitoring security systems and controls to safeguard company data and infrastructure.
- Performing vulnerability assessments, penetration testing, and security audits to identify and mitigate risks.
- Developing and refining incident response plans, and actively participating in security incident detection, analysis, and resolution.
- Collaborating with IT and development teams to integrate security best practices into the software development lifecycle (SDLC) and infrastructure deployments.
- Staying current with the latest security threats, technologies, and regulations to continuously improve our security posture.
- Providing security awareness training to employees and acting as a subject matter expert for security-related queries.
We are looking for candidates with a strong foundation in cybersecurity principles and practical experience. Key requirements include:
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- 3-5 years of direct experience in an Information Security Engineer or similar role.
- Solid understanding of network security (firewalls, IDS/IPS, VPN), endpoint security, and cloud security principles (AWS, Azure, GCP).
- Proficiency with security tools such as SIEM, EDR, vulnerability scanners, and web application firewalls (WAF).
- Experience with security frameworks like NIST, ISO 27001, or equivalent.
- Strong analytical, problem-solving, and communication skills, with the ability to articulate complex security concepts to non-technical stakeholders.
- Relevant industry certifications (e.g., CISSP, CISM, CompTIA Security+) are highly desirable.
We offer a competitive annual salary of USD 35,000 – 50,000, commensurate with experience and qualifications. Join a collaborative and innovative environment where your contributions are valued, and you have opportunities for continuous learning and professional growth. We are committed to fostering a supportive culture that promotes work-life balance through our hybrid work model and provides comprehensive benefits.
