IT Security Manager

Job Duties

• Responsible for maintaining and improving the IT security posture of an on-premise, large-scale IT system with over 1K servers for a HKSAR government sector customer. 
• Non-supervisory position, but will work closely with existing infrastructure, application security specialists, as well as 3rd party service providers. 
• The customer-facing role, responsible for interfacing with the customer's technology risk management team as well as our own organization’s Risk Management Team. 

Education / Qualification

• Degree holder or above in Information Technology / Computer Science or equivalent

 Skills / Knowledge

• Demonstratable previous experience in designing and deploying IT security components and operations processes in compliance with DPO's G3 & S17 security guidelines. 
• Proficient in both written and spoken English and Chinese. Written English competency should be extremely high as the role involves drafting or updating policy-level documents. 
• Come from an IT System Integration company background; and 
• Be familiar with OGCIO (now DPO) G3 IT Security Guidelines and S17 Baseline Security Policy
• Have previous hands-on experience in designing IT Security architectures and processes to comply with DPO’s G3 & S17 
• Be familiar with IT security technologies and be able to evaluate and procure appropriate technologies for deployment. 

Working Experience

• Minimum of 5 years experience in IT Infrastructure Security and/or IT Security Operations, with no less than 2 years experience in a leadership role.
• Holder of at least one of the following certificates 
• CISSP / CISM 
• CompTIA Security +
• CEH