The Department

The Cyber Security Department is responsible for the enhancement of the resiliency of Club's information, information systems and network infrastructure, as well as identifying security threats and vulnerabilities and effectively manage the risks. The team also works to ensure the Club's conformance to local cyber laws and regulations.

The Job

You will:

• Ensure the platform and network security controls are embedded into the architecture and design of the platforms and network used within the Club
• Ensure the platform and network security controls and services provided are operating effectively
• Continuously identify control and coverage gaps, and improvement initiatives to uplift the Platform & Network Security service, particularly in areas of emerging technology the Club is looking to adopt
• Ensure the platforms (classic, virtual, container, cloud), email gateway and web gateway used within the Club have the required security controls adopted to protect them from cyber threats and security logging is made available to the Club’s Security Operations Centre for detection and response purposes
• Govern the management of firewall rules and configuration, IDS/IPS signatures, web application firewall rules and configuration, and API security
• Support the provision of platform and network security metrics, reports and service highlights to the IT and business stakeholders
• Undertake other duties assigned by Cyber Security Management
• Participate, contribute and help shape a diverse and inclusive culture with trust and respect. Play an active role to support cross-team/division/department efforts and model collaborative behaviours
  
  
  

About You

You should have:

• Degree in Computer Science, Information Security, and/or related discipline
• 5 years or more working experience in the Platform & Network Security domain across various disciplines
• Strong experience covering Platform & Network Security services and required operating procedures
• Strong service and customer-focused approach to the service being delivered
• Excellent interpersonal, collaborative and communication skills
• Well-disciplined with exemplary professional competence and integrity
• Experience with the following services and technologies – Endpoint/Server Security (Anti-Malware & Endpoint Detection and Response), Virtualisation Security, Container Security, Cloud Security, Web & Email Security Gateway, Firewall Governance and IDS/IPS, Web Application Firewall/DDoS/API Protection
• Industry-recognised certification in one or more of the following – CISSP, CISM, etc.
  
  
  

Terms of Employment

The level of appointment will be commensurate with qualification and experience.

Enquiries

We are an equal opportunity employer. Personal data provided by job applicants will be used strictly in accordance with the Club's notice to employees and prospective employees relating to the Personal Data (Privacy) Ordinance. A copy of which will be provided immediately upon request.