Senior Cyber Security Engineer
| Job ref no. | CC-HKMA |
| Job level | |
| Work experience | |
| Education | Bachelor Degree |
| Location | New Territories |
| Employment type | Full Time |
| Benifits | |
| Industry | Information Technology |
| Job function | Information Technology (IT) |
| Post on | 2026-04-20 |
Job duties
- Evaluated how EDR telemetry from endpoints and servers was leveraged by SOC teams to achieve timely detection of malicious behaviors, including initial access, lateral movement, privilege escalation, persistence, and command-and-control activities simulated during iCAST.
- Assessed the effectiveness of integrating EDR with SIEM and SOC workflows, focusing on alert correlation, threat context enrichment, escalation criteria, and analyst decision-making during simulated cyber incidents.
- Examined the role of endpoint management controls, including MDM and endpoint hardening, in supporting EDR coverage, policy enforcement, and rapid response across user endpoints and critical systems.
- Led intelligence-led cyber attack simulation testing (iCAST) under the Cyber Resilience Assessment Framework, using EDR as the primary control layer to assess institutions’ ability to detect, respond to, and recover from APT-driven attack scenarios.
Requirements
- Recognised qualifications / Certificates
- Proven experience in supporting EDR system, preferably for SentineOne
- Around 2 years of IT security experience