Company Introduction: We're home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.
HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."
Job Summary: The Information Security Engineer is part of HKEX Information Security function, playing a key role in enhancing the organization security posture. Incumbent is responsible for the design, build, operate and evolve the enterprise IT security solutions to address the organization's security requirements and engaging with key stakeholders to provide critical security services.
Job Duties: Responsibilities - Design, deploy, operate, and maintain enterprise security tools and technologies to protect HKEX's IT infrastructure. These include, but are not limited to, Webproxy, IPS, WAF, anti-DDOS platforms, browser isolation tools, and Data Leakage Protection systems.
- Perform daily operational tasks including managing URL whitelist, handling Data Leakage Protection rule exceptions, and updating policies on webproxy and browser isolation tools.
- On-board application systems to WAF and anti-DDOS platforms, monitor and maintain existing security tools to ensure continuous protection and compliance,, and fine-tuning policies.
- Engineer, implement and monitor security measures for the protection of computer systems, networks and information.
- Identify and define system security requirements.
- Design computersecurity architecture and develop detailedcyber securitydesigns.
- Configure and troubleshoot security systems and infrastructure devices.
- Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
- Maintain all solution design documentation, processes, procedures and report on metrics to demonstrate effective and efficient management of services.
- Work with product vendors and suppliers to maintain and enhance existing security tooling and products.
- Ensure that the organization security tools can detect and help with the response to cyber security incidents.
- Document and validate disaster recovery testing for CyberSecurity tools.
- Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancements.
- Support in managing the Total Cost of Ownership (TCO) for security solutions which includes new investments and business-as-usual financials.
Requirements: - Hands-on experience or academic exposure to security engineering or system administration..
- Experience in building, maintaining and operating security systems and platforms.
- Hands on experience in at least one of Webproxy, IPS, WAF and anti-DDOS security systems.
- Experience with network security and networking technologies and with system, security, and network monitoring tools.
- Keen on the latest security principles, techniques, and protocols (such as zero trust, etc).
- Problem solving skills and ability to work under pressure.
- Must have strong information security technology knowledge/concepts and can effectively communicate with senior management and a broad range of technical/non-technical audiences.
- Strong written communication skills and verbal presentations to internal stakeholders.
- Must have a relevant University degree in Computer Science, Information Management, or related field, or equivalent experience.
- Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols.
- Familiarity with application, database and operating system security.
- Familiarity with cloud security technologies (AWS or Huawei Cloud Stack (HCS) is preferred).
- Familiarity with risk / control frameworks, such as Mitre ATT&CK, D3FEND, OWASP, NIST Cybersecurity Framework.
- Familiarity in scripting (Python) or automation (Ansible) is an advantage.
- Previous experience in regulated environments is an added advantage
HKEX is committed as an Equal Opportunity Employer. Diversity is one of our core values and we look to support, respect diverse perspectives, abilities, culture and experiences within our workplace.
Location: HKEX - TKO
Shift: Standard - 40 Hours (Hong Kong SAR)
Scheduled Weekly Hours: 40
Worker Type: Contract