Create Alert
Apply now »

Analyst, Cyber Security

Digital Trust and Transformation Division

Ref: DTD194/25, 10514

 

Job Description

 

Who we are looking for:

 

  • Creativity in new ideas and future focus vision. 
  • Collaboration with colleagues and the community at large.
  • Work Smart, Play Smart!

 

What you'll do:  

  • Handle HKCERT operations such as monitoring of security threats, providing advice on incident response, publishing security alert, handling hotline, etc.   

  • Conduct research and publish reports on emerging security threats and defence trends, specializing in IoT, mobile, cloud, application security, or threat intelligence   

  • Administer and support HKCERT’s infrastructure, ensuring reliability and security  

  • Set up, manage, and perform searches in SIEM platforms, including conducting data analytics, correlation, and comparison to identify security threats and trends  

  • Support and maintain the automated deployment and management of systems and infrastructure using Infrastructure-as-Code (IaC) and containerized platforms  

  • Provide technical support to internal systems, provide awareness talks or technical training  

  • Implement security programs and assist in the provisioning of HKCERT services and handle ad-hoc projects and assignments as required

 

You'll be a good fit if you have/are: 

  • Bachelor’s degree in Computer Science or Information Security related disciplines or Diploma/High Diploma with minimum 2 years of relevent experience  

  • Solid experience in system, network, and/or security infrastructure management, including administering operating systems such as Ubuntu Linux and Windows Server 

  • Hands-on experience with security tools and platforms such as Splunk, Elastic Stack, honeypots, MISP, dark web monitoring, and offensive security tools (e.g., Burp Suite, Nessus, Kali Linux, Nmap, SQLmap, Wireshark) is an advantage 

  • Practical experience with Infrastructure-as-Code (IaC) tools and containerization/orchestration technologies (e.g., Docker, Kubernetes, Ansible) is preferred 

  • Proficient in data analysis to identify patterns, trends, and actionable insights and  programming skills in languages such as Python, Node.js, PHP, HTML, JavaScript, and CSS 

  • Experience conducting research with tangible outputs, handling hotlines, and delivering public talks or awareness training in information security 

  • Relevant certifications in information or offensive security (e.g., CEH, OSCP, GIAC, CISSP) are an advantage but not a must 

  • Mature, self-motivated, analytical, and an effective problem solver; able to work under pressure and adapt to technological changes,  customer-oriented, with strong interpersonal, presentation, and communication skills; able to explain technical issues to both technical and non-technical stakeholders 

 

Note:

Applicant may be considered for other positions if not matching the requirements of the subject position.

 

What we offer and What you’ll like here:

  • Exciting new technology development (e.g. IoT, 5G, LoRA, AI etc.) to actualize your creative ideas
  • Opportunities to work with our innovative and vibrant talents
  • Embracing work flexibility (including Flexi-work hour)
  • Dynamic and energetic culture with smart outfits & sport shoes
  • Academic training scholarship to take your career up a notch 
  • MPF Top-up & dental benefit
  • Medical benefits from Day-1 with extended coverage to dependent(s)

 

Apply now if you’re ready to take the challenge!  Do not miss this opportunity to join us to Create Value and “MAKE SMART SMARTER”!  

 

HKPC will take into consideration both the quantitative and qualitative requirements of the position when selecting the suitable candidates.  A competitive salary package commensurate with academic qualifications and experience will be offered. 

 

Applicants are welcome to submit application at the HKPC e-Recruitment System (careers.hkpc.org) in 1 week from the posting date.  Recruitment will continue until the position is filled.  

 

Applicants not invited for interviews within 6 weeks may consider their applications unsuccessful. All information provided by applicants will be treated with strict confidence and used solely for recruitment purposes. The personal data of unsuccessful applicants will be retained for 12 months from the date the recruitment process is completed.

Apply now »