Role Overview:
Additional Information: Please note, this role requires working full-time onsite, five days per week. NON Negotiable
We are seeking an experienced IT Security Engineer to become a vital part of a growing IT Department. This critical role will focus on protecting our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations.
Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or involvement in regulatory technical projects, are strongly preferred.
Key Responsibilities:
* Develop and maintain cybersecurity policies and procedures, ensuring compliance with industry standards and local regulations.
* Real-time monitoring of cybersecurity incidents, including incident analysis, investigation, and mitigation.
* Oversee and maintain security equipment including firewalls, intrusion prevention systems (IPS), web application firewalls (WAF), and antivirus systems.
* Perform periodic security drills and regular penetration testing to ensure the integrity of security systems.
* Harden security controls across Windows and Linux environments and ensure regular patching and firmware upgrades.
* Enhance data security through robust encryption practices during usage, storage, transfer, and disposal.
* Conduct security evaluations on network and firewall policies and manage application security in both development and testing phases (SAST, DAST).
* Liaise with internal audit teams and international cybersecurity operations centres to implement security policies and controls.
* Provide cybersecurity training to ensure staff awareness and compliance.
Skills & Qualifications:
* Minimum 3 years' experience in cybersecurity.
* Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations.
* Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds).
* Proficiency in Windows/Linux system administration and virtualization technologies (VMware, Hyper-V).
* Previous experience within the finance or banking sector is highly advantageous.
Certifications (Desirable):
* CISA, CISSP, CCSP
* Microsoft Certifications (MCSA, MCSE, MCITP)
* VMware Certified Professional
* Cisco Certifications (CCNA, CCNP)
1. Languages:
* Fluent English required; Mandarin proficiency strongly preferred but not mandatory.
Additional Information: Please note, this role requires working full-time onsite, five days per week. Candidates should be comfortable with this arrangement before submitting their application.