(Senior) Network Security Engineer / Cybersecurity Specialist (35K-75K)
| Job ref no. | WL |
| Job level | |
| Work experience | |
| Education | Bachelor Degree |
| Location | Hong Kong Island |
| Employment type | Full Time |
| Benifits | |
| Industry | Information Technology |
| Job function | Information Technology (IT) |
| Post on | 2025-06-27 |
(Senior) Network Infrastructure Security Engineer
This role involves overseeing various network and security infrastructure including firewall management, proxy management, VPN management, Anti-DDoS management, and the management of routers, switches, load balancers, monitoring tools, PAM solutions, vulnerability scanning, endpoint data loss protection, DNS, and certification management to ensure the integrity, confidentiality, and availability of our network
Firewall Management:
• Design, implement, and maintain firewall policies to protect the organization's network from unauthorized access and cyber threats.
• Monitor firewall logs and alerts to identify and respond to security incidents.
• Conduct regular firewall rule reviews and updates to ensure compliance with security policies and best practices.
VPN Management:
• Configure and manage VPN solutions to provide secure remote access for employees and partners.
• Monitor VPN connections and logs to detect and respond to unauthorized access attempts.
• Ensure VPN infrastructure is up-to-date with the latest security patches and updates.
Anti-DDoS Management:
• Implement and manage Anti-DDoS solutions to protect the network from distributed denial-of-service attacks.
• Monitor network traffic for signs of DDoS attacks and respond promptly to mitigate impact.
• Conduct regular assessments to ensure the effectiveness of Anti-DDoS measures.
Router, Switches, and Load Balancer Management:
• Configure and manage routers, switches, and load balancers to ensure efficient network traffic flow and high availability.
• Provide technical advice and expertise in design and support of large-scale corporate network infrastructure, including enterprise grade switches, routers, load balancers and monitoring tools.
• Monitor and supervise day-to-day support and troubleshooting and operations activities in network infrastructure.
• Monitor the performance of network devices and troubleshoot issues to maintain optimal network functionality.
• Implement security measures to protect network devices from unauthorized access and cyber threats.
Endpoint Data Loss Protection:
• Implement and manage endpoint data loss protection solutions to prevent unauthorized data exfiltration.
• Monitor endpoint activity for signs of data loss and respond to incidents.
• Ensure compliance with data protection policies and regulations.
DNS and Certification Management:
• Manage DNS infrastructure to ensure secure and reliable domain name resolution.
• Implement and manage certification management processes to ensure the integrity and validity of digital certificates.
• Monitor and renew certificates to prevent expiration and security risks.
Cybersecurity Specialist
Responsibilities
-
Support key projects in Identity & Access (IAM/PAM/IGA) and other cybersecurity domains across Discover, Design, Build, Test, and Operate.
-
Assist in the planning, execution, and monitoring of security tasks, ensuring alignment with security objectives and compliance standards.
-
Identify security risks, pain points, and improvement opportunities and collaborate with relevant teams to develop mitigation strategies.
-
Liaise with technical and non-technical stakeholders to ensure clear understanding of security issues and requirements.
-
Facilitate remediation efforts by providing guidance and support to relevant teams.
· Collaborate closely with internal stakeholders and external vendors on detailed security configurations, documentation, testing, disaster recovery drills, production readiness, etc.
-
Explore emerging security technologies and maintain a good understanding of the latest attacks, vulnerabilities, industry best practices, and relevant legal/regulatory requirements.
(Senior) Network Infrastructure Security Engineer
Requirements
• Higher Diploma or Bachelor degree in Information Technology, or a related field.
• Proven experience in network security operations, with a minimum of 3 years in a similar role.
• In-depth knowledge of firewall, proxy, VPN, Anti-DDoS, router, switch, load balancer, monitoring tool, PAM, vulnerability scanning, endpoint data loss protection, DNS, and certification management technologies.
• Relevant certifications such as CISSP, CCNP/CCIE, Security, PCNSE, CyberArk, Tenable, Qualys, or equivalent is an asset.
• Good knowledge in large scale network infrastructure / technology including TCP/ IP, TACACS+/ Radius, OSPF and BGP.
• Candidates are expected to have experience in some of the areas mentioned above, but not necessarily all. We value a diverse skill set and are looking for individuals who can bring their unique expertise to our team.
Cybersecurity Specialist
Requirement
-
Higher Diploma or Bachelor degree or above in Information Security, Network Security, Software Engineering, Information Technology, or other related disciplines.
-
At least 3 years of hands-on experience as a Cybersecurity Architect/Specialist/Engineer/Analyst or equivalent role(s).
-
Hands-on experience with any of the following is preferred: IAM/PAM/IGA solutions (e.g. SailPoint, Thales, Okta, Auth0, CyberArk), Microsoft Entra ID and/or Active Directory, MFA, OIDC/OAuth 2.0, SAML/SSO, Azure / AWS / Alibaba Cloud, Microsoft Purview Information Protection (or AIP/RMS/IRM).
-
Good understanding of Identity & Access (IAM/PAM/IGA) and relevant industry security standards/frameworks and best practices is preferred.
-
Experience in any of the following areas would be an advantage: Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Information Protection or Data Security.
-
Good interpersonal and communications skills, analytical thinking, structured problem-solving, fast learning, committed, proactive, and upholds integrity and quality.
-
Professional working proficiency in both verbal and written English and Chinese.