工作机会
>
Hong Kong

    Incident Response - Hong Kong, 香港 - Crypto

    Crypto
    Crypto Hong Kong, 香港

    3天前

    Default job background
    描述
    The Cybersecurity and Data Privacy team reports directly under the office of the CISO headed by Chief Information Security Officer (CISO) Jason Lau () who has over 23+ years of experience in the cybersecurity space, awarded Global Top 100 CISO, and also serves on the World Economic Forum, International Association of Privacy Professionals and more. The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped to drive us to be the first Crypto company worldwide to achieve ISO27001, ISO27701, ISO22301 and PCI:DSS (Level 1) certifications. Extremely detailed third party attested by international audit firm SGS and achieved "Adaptive (Tier 4)" – the highest level possible for the US National Institute of Standards and Technology (NIST) Cybersecurity Framework and the latest NIST Privacy Framework as well as SOC2 and many other regional certifications like the Data Protection Trust Mark.As part of the CIRIFT at , you will be involved in responding and managing cyber security incidents throughout the cycle - from Preparation to Identification, Containment, Eradication, Recovery and Lessons Learnt - along with other incident responders around the globe.You will apply all of your skills on cyber , digital forensics, log analysis, intrusion analysis and any related skills to respond to security incidents on our endpoints, network, and cloud infrastructure. In this role, you will provide prevention, detection, response and remediation activities to ensure information assets and technologies are adequately protected using different technologies like NGFW, EDR, IDS/IPS, EDR, DLP and more. You will also apply your collaboration and communication skills to work effectively with all relevant stakeholders in multicultural/global environments.

    Responsibilities

  • Report to Senior Manager to facilitate all phases in the incident response lifecycle
  • Involve in various incident prevention projects to improve Security posture
    • Preparation
  • Understand different regulatory and compliance requirements like critical time to report, escalation flows, etc.
  • Take part in self-assessment exercises like Tabletop Exercises, Attack Simulations, Red/Purple Team exercises to make sure the incident response process is working smoothly
  • Develop incident response runbooks, playbooks and SOPs with reference to different regulatory requirements
  • Evaluate the incident response readiness of different layers - people, process, technology
    • Detection & Analysis
  • Respond to the cyber security incidents escalated from various channels including the 24/7 SOC team.
  • Respond to cyber security incidents in compliance with the local authority / regulatory requirements.
  • Assess the risk, impact and scope of the identified security threats
  • Perform deep-dive incident analysis of various data sources by analysing and investigating security related logs against medium-term threats and IOCs
    • Containment, Eradication and Recovery
  • Communicate with the stakeholders and provide guidance, recommendations to contain and eradicate the security incident
  • Participate in root cause analysis using forensic and other custom tools to identify any sources of compromise and/or malicious activities taking place.
  • Document and present investigative findings for high profile events and other incidents of interest.
    • Post incident activities
  • Provide lessons learnt meeting to the stakeholders
  • Lead and keep track on the follow-up activities
  • Document the incident in the case management system and provide incident reports
  • Always ready to jump in, in the event of security incidents.

    • Requirements

  • 5+ years experience in the Cyber Security industry
  • Strong technical and analytical skills
  • Familiar with the cyber security incident response process
  • Hands-on experience on performing incident response activities
  • Have scripting experience like Bash, PowerShell, Python, Go, etc, and the ability to use these skills to aid in responding to incidents involving Windows, Linux, macOS, as well as cloud environment
  • Have knowledge of cybersecurity tools and software like NGFW, EDR, IDS/IPS, EDR, DLP, SIEM, other log management platforms, etc.
  • Be familiar with the MITRE ATT&CK Framework and/or Cyber Kill Chain
  • Be passionate on exploring new technologies and having creative initiative to boost the team capabilities
  • Holders of security related certifications is a plus (, AWS, CISSP, GCIH, GCIA, GCFA, GNFA, GREM, or other equivalent)
  • Knowledge of regulatory and compliance requirements like GDPR, MAS, PSD2 etc is a plus.
  • Fast learner with can do attitude and ready to get the hands dirty
  • A strong team player who can collaborate with compassion
    • #LI-MK1#Hybrid
  • The Hong Kong Jockey Club

    Technical Manager, Cyber Incident Response

    5天前

    The Hong Kong Jockey Club Hong Kong, 香港 全职

    The Department · The Cyber Security and Cloud Platforms Department is responsible for the protection of the Club's information, information systems, network infrastructure and cloud platforms, as well as assurance over the resiliency and continuity of the Club's IT infrastructur ...

  • The Hong Kong Jockey Club

    Technical Manager, Cyber Incident Response

    5天前

    The Hong Kong Jockey Club Hong Kong, 香港 全职

    The Department · The Cyber Security and Cloud Platforms Department is responsible for the protection of the Club's information, information systems, network infrastructure and cloud platforms, as well as assurance over the resiliency and continuity of the Club's IT infrastructur ...

  • KPMG China

    Associate/Senior Associate, Forensic Accounting/Cyber Incident Response/Cyber Investigation, Risk Consulting

    3天前

    KPMG China Hong Kong, 香港

    Service Line Overview · KPMG China has experienced forensic resources based in Beijing, Shanghai and Hong Kong. We provide clients with commercial and financial expertise in the areas of Anti-money Laundering/ Counter Terrorist Financing and Sanctions Compliance Services, Fraud ...

  • Morgan McKinley

    Technical Business Analyst

    7小时前

    Morgan McKinley Hong Kong, 香港 全职

    An international retailer chain is looking for a technial business analyst with ERP or supply chain background and application support skills to join the APAC team · Responsibilities:Provide support for internal ERP Applications or other core Applications managed by the IT depar ...

  • IGNITE RECRUITMENT HONG KONG LIMITED

    Cybersecurity - Senior Manager – Toptier Global MNC

    7小时前

    IGNITE RECRUITMENT HONG KONG LIMITED Hong Kong, 香港 全职

    The Role · Review, implement and enforce Cyber resilience policies across the organisation · Perform regular risk and vulnerability assessments to identify potential threats putting in place remediation actions · Define and implement Cyber Incident Response plan and playbook. · ...

  • Hong Kong Exchanges and Clearing Limited

    Vice President

    7小时前

    Hong Kong Exchanges and Clearing Limited Hong Kong, 香港 全职

    Company Introduction: · We're home to Asia's most dynamic and vibrant capital markets. · Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every ...

  • TEKsystems Hong Kong

    Operations Manager

    7小时前

    TEKsystems Hong Kong Hong Kong, 香港 全职

    Opening for an Operations Manager at a global firm who are expanding their team in Hong Kong. · The client needs someone to provide support for an internal migration project, managing teams and ensuring a smooth delivery. Once this project has been completed, this person will be ...

  • IGNITE RECRUITMENT HONG KONG LIMITED

    IT Support Analyst

    7小时前

    IGNITE RECRUITMENT HONG KONG LIMITED Hong Kong, 香港 全职

    Summary · Acting as a face for our Digital/IT team, this role is a key point of contact for end users for IT incidents and service requests. The role manages incidents and requests through to completion, escalating and communicating with internal and external parties as needed. · ...

  • Hong Kong Exchanges and Clearing Limited

    Vice President

    6天前

    Hong Kong Exchanges and Clearing Limited Hong Kong, 香港 全职

    Company Introduction: · We're home to Asia's most dynamic and vibrant capital markets. · Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every ...

  • Wellesley Associates Limited

    IT Security SOC Engineer, SIEM

    1周前

    Wellesley Associates Limited Hong Kong, 香港 全职

    Job Scope: · Work with the SOC team to provide professional services to customers · Provides 2nd tier support for Security Operation Center (SOC) on our Managed Security Services, includingMSS Security Information and Event Management (SIEM), · Managed Unified Threat Management ( ...

  • Aptitude Asia

    Application Support

    1周前

    Aptitude Asia Hong Kong, 香港 全职

    Responsibilities: · Respond to user inquiries and issues related to software applications, troubleshoot problems, and provide timely and effective resolution. This may involve diagnosing and resolving software bugs, configuration issues, or user errors. · Manage and prioritize in ...

  • AIA International Limited.

    Corporate Compliance, Principal

    7小时前

    AIA International Limited. Hong Kong, 香港 全职

    FIND YOUR 'BETTER' AT AIA · We don't simply believe in being 'The Best'. We believe in better - because there's no limit to how far 'better' can take us. · We believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the ...

  • Bank Of China (Hong Kong) Limited

    Senior Technology Risk Manager

    4天前

    Bank Of China (Hong Kong) Limited Hong Kong, 香港 全职

    Responsibilities: · Identify the existing and potential risk in IT operation, report the risk to supervisor and related parties in time, formulate the rectification plan and follow up. · Implement effective detection and control measures to strengthen the production operation sa ...

  • Bank Of China (Hong Kong) Limited

    Senior Compliance Manager

    6天前

    Bank Of China (Hong Kong) Limited Hong Kong, 香港 全职

    Responsibilities:Provide advice to the business units regarding regulatory compliance issues on general banking products/ services (including deposit, loans, credit cards, fintech projects) and business propositions · Assist the business units in evaluating the risk involved in a ...

  • Bonhill Partners

    Trade Support Engineer

    2天前

    Bonhill Partners Hong Kong, 香港 全职

    Bonhill Partners are working with one of the worlds leading hedge funds to expand their trade support capability primarily on the Equities desk. · If you meet the following criteria, we look forward to speaking with you: · Good Python programming experience · Good FIX knowledge ...

  • ZA Bank

    Manager, Retail Credit Policy

    1天前

    ZA Bank Hong Kong, 香港 全职

    Responsibilities: · Develop and maintain credit policy for unsecured retail lending products · Implement and improve a digitalized credit process · Capable of managing and improving the SOP of unsecured retail lending across the different stages (i.e. Collection, Approver, etc) t ...

  • X-Giants International Hong Kong Limited

    Compliance Manager/Senior Manager

    1周前

    X-Giants International Hong Kong Limited Hong Kong, 香港 全职

    Compliance Manager/Senior Manager · Responsibilities: · Compliance Policy and Procedures: Develop and update the company's compliance policies and procedures to ensure business activities comply with national and regional financial regulatory laws. · Regulatory Agency Communicati ...

  • Industrial and Commercial Bank of China (Asia) Limited

    Assistant Manager to Manager, Operational Risk Management

    6天前

    Industrial and Commercial Bank of China (Asia) Limited Hong Kong, 香港 全职

    Job ResponsibilitiesFormulate, update, amend and implement policy and procedures on operational risk management and operational resilience. · Provide support to the implementation of operational resilience framework, coordinate and assure proper execution of related activities; i ...

  • Hong Kong Exchanges and Clearing Limited

    Vice President/Assistant Vice President

    2天前

    Hong Kong Exchanges and Clearing Limited Hong Kong, 香港 全职

    Company Introduction: · We're home to Asia's most dynamic and vibrant capital markets. · Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every ...

  • Omni Group Asia Ltd.

    IT Support Analyst

    1天前

    Omni Group Asia Ltd. Hong Kong, 香港 全职

    Core duties · Reporting to the Director, Regional IT Operations Asia Pacific, the IT Support Analyst provides 1st and 2nd tier support for regional IT incidents and requests from associates via phone, email, and remote connection to resolve routine problems regarding hardware, so ...