IT Security Operations Senior Lead
At Cathay Pacific, we share one common aspiration: to be the world's best airline. We believe in looking for the best in our people, in working as a team, in doing the right thing by our shareholders and our communities.
With a global team, we offer a diverse range of career choices and opportunities - in the air, on the ground; in customer service, in the office; managerial or professional roles. Our team of great people each plays a key role to deliver the quality service that we are famous for.
Highlight
Responsible to execute, monitoring all IT security operation works within the company, including threat hunting and incident response process.
Equips with strong leadership skills, responsible for managing the performance and developing junior team members. This position must able to effectively communicate with all levels of staff within the organization; from different business units across the company to senior management. This position act as front-lint IT security operation role. Job rotation within IT security operation is expected.
Responsibilities
-Provides management oversight to all IT security operation team functions
-Responsible for the day-to-day operational works for security incidents and associated security request SLAs of IT security operational topics.
-Owning all IT security operations solutions administration and operations work.
-Capable to deliver early security identification and response process.
-Responsible to perform threat hunting process to response emerging threat landscape.
-Familiarity with security vulnerabilities, exploits, malware and digital forensics as they relate to Incident Response.
-Work with different business unit and extended IT team to overcome various IT security challenge.
-Manage the relationship with third-party vendors providing services to support incident response
-Oversee reporting that will provide analytics and metrics to Cybersecurity leadership
-Audit support functions including evidence collect and update, implement the suggested controls
-Tightly collaborate with external security operation service, i.e. SOC, Manage Defence Model and offshore engineering service.
-Competent to work at a high technical level of forensic and investigations in IT environments, capable of identifying vectors of threats and incidents.
-Work with others to assist the education of security events and implications, and develop documentation to support the incident response process.
-Responsible for the day-to-day operational works for security incidents and associated security request SLAs of IT security operational topics.
-Owning all IT security operations solutions administration and operations work.
-Capable to deliver early security identification and response process.
-Responsible to perform threat hunting process to response emerging threat landscape.
-Familiarity with security vulnerabilities, exploits, malware and digital forensics as they relate to Incident Response.
-Work with different business unit and extended IT team to overcome various IT security challenge.
-Manage the relationship with third-party vendors providing services to support incident response
-Oversee reporting that will provide analytics and metrics to Cybersecurity leadership
-Audit support functions including evidence collect and update, implement the suggested controls
-Tightly collaborate with external security operation service, i.e. SOC, Manage Defence Model and offshore engineering service.
-Competent to work at a high technical level of forensic and investigations in IT environments, capable of identifying vectors of threats and incidents.
-Work with others to assist the education of security events and implications, and develop documentation to support the incident response process.
Requirements
-10 years relevant IT security experiences
CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience is a must.
-IT security incident investigation and relevant forensic knowledge
-Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
-Strong team development and coaching skills
-Self-motivation, willing to keep update to market standards and technology
-BA or BS degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
CISSP, CISM, CRISC, ISO 27001 lead auditor or relevant experience is a must.
-IT security incident investigation and relevant forensic knowledge
-Strong knowledge on compliance framework i.e. ISO 27001, PCIDSS
-Strong team development and coaching skills
-Self-motivation, willing to keep update to market standards and technology
-BA or BS degree in Information Technology, Computer Science, Computer Engineering, or Cyber Security or equivalent
Salary
Negotiable
Benefits
Please Sign in to view relevant information
Employment Type
Qualification
Career Level
Min. Yrs. of Experience
10
Location
Validity
Expired