SEEK Asia Style Guide

Security / InfoSec – Director, AD, Manager, AM, Perm (40-75K)Teki'Spire Limited
  • Not Specified
  • Salary provided
  • Posted on 14 Aug 2019
Security / InfoSec – Director, AD, Manager, AM, Perm (40-75K)Teki'Spire Limited

Job Highlights

  • Cyber Security, Network Security, Technology risk
  • Banking in-house, Security Consultant

Job Description

Job Title : Director, Information Security, Commerce Perm 75-90K 


  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program
  • Work directly with the business units to facilitate risk assessment and risk management processes
  • Develop and enhance an information security management framework
  • Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services
  • Provide leadership to the company's information security organization
  • Partner with business stakeholders across the company to raise awareness of risk management concerns
  • Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems 


  • Bachelor Degree or above in Computer Science or related discipline
  • Minimum of 12 years of experience in a combination of risk management, information security and IT jobs
  • Knowledge of information security management frameworks, such as ISO/IEC 27001, and NIST
  • Security experience in the following preferred: PCIDSS compliance, Vulnerability Scanning, Hardening, Penetration Testing
  • Knowledge and experience in next generation firewall, IPS, end-point security, sandbox or related security solutions
  • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
  • Experience with contract and vendor negotiations and management including managed services
  • Professional security management certifications such as CEH, CISSP, CISM, CISA or CRISC is highly preferred


Title: Associate Director, Security Solution and Services, Commerce Perm


  • Subject Matter Expert and the leader to drive new security solution in the company. 
  • Motivate internal sales team to drive more revenue.
  • Responsible for the development of the Go to Market Strategy for company’s Security Solution
  • Support in all sales/ marketing activities for promoting the Company’s Security Solution
  • Develop the go to market strategy
  • Develop sales and marketing material
  • Develop material and enable internal sales team on security solution selling
  • Managing new security solution at an early stage of life cycle
  • Forecast performance and track progress towards target
  • Build and maintain solid professional working relationship with internal teams and external business partners
  • Being attentive to best practices, proactively suggest actions for management considerations


  • Bachelor's degree or equivalent practical experience.
  • 15 years of technology sales and marketing experience with 5 years of experience selling security solutions and services.
  • 5 years of business development experience on new products/ services with proven successful records
  • Sale and Marketing experience with Cloud Security and Mobility Security is a plus.
  • Strong communication skills mandatory with the ability to engage with all levels of an organization.
  • Strong presentation skills at all levels, business development acumen, and virtual team building.
  • Capable of developing and presenting interesting solutions strategies, meeting /exceeding expectations.
  • Fluent in written and spoken English and Chinese
  • Candidates with less experience maybe considered as Senior Manager


Title: Manager, Technology Risk, Banking Perm


  • Design, develop and update Information security policies, standards and guidelines.
  • Research security standards, security systems and authentication protocols.
  • Perform risk analyzes on existing security infrastructure and implement security enhancements.
  • Implement systems and procedures to enable digital forensics capabilities.
  • Develop technical requirements and controls for network, system and data security.
  • Provide technical guidance to systems and network team regarding security configurations.
  • Participate in developing, tuning and implementing threat detection analytics.
  • Apply process to ensure that IT operational and control risks are at an acceptable level within the risk thresholds of the bank, by evaluating the adequacy of risk management controls.
  • Assist in communicating the risk management standards, policies and procedures to stakeholders.
  • Analyze and report to management, and investigate into any non-compliance of risk management policies and protocols.
  • Define appropriate framework for cybersecurity monitoring (including monitoring requirements, indicators, datasets, collection and analytical methods).
  • Analyze cybersecurity incidents and make recommendations on remediation actions.
  • Collect data on cybersecurity related risk, attacks, breaches and incidents, including external data and statistics as appropriate.
  • Investigate security incidents by gathering evidence and reviewing system logs / audit trails.
  • Involve in project team on developing a new system for the bank. Provide solution and advice related to security of the system, network and IT infrastructure.
  • Prepare and conduct security awareness training to the bank.
  • Conduct regular security assessment on the system, network and IT infrastructure used by the bank.
  • Play a governance role on the IT outsourcing service provider. Perform regular security assessment on IT outsourcing service provider.


  • Minimum 5 years of relevant work experience in information security / cybersecurity.
  • University graduate in Computer Science / Information Technology or equivalent.
  • One or more certificates in: CISSP, CISA, CISM, CCSP, ACSP, CPSA
  • Experience in Microsoft Windows, AIX, Sun Solaris, Linux, CISCO router and switch, F5 ASM/APM/LTM, Checkpoint firewall, Juniper firewall, Trend Micro Deep Security, Splunk,  Forcepoint Web Security Gateway and ForeScout Network Access Control.
  • Solid experience in Thales payShield HSM and nShield HSM
  • Solid experience in performing vulnerability scanning, penetration test and technology risk assessment
  • In depth knowledge in the security controls of client server technology, web applications (using HTML, Java, Ajax, and .NET) and database (such as Oracle, DB/2, MS-SQL and Sybase)
  • Familiar with the Supervisory Policy Manual of HKMA, Personal Data Privacy Ordinance, PCI Data Security Standard, and Customer Security Controls Framework of SWIFT and SFC guidelines
  • Familiar with Public Key Infrastructure (PKI) and ANSI x9.17 Key Management Standard
  • Banking experience is an advantage
  • Strong information security sense in relation to business requirements
  • Excellent command of written English
  • Mature, independent and able to deliver quality results under tight schedule
  • Good communication and interpersonal skills


Title: Assistant Manager, Information Security, Banking Perm


  • Provide information security recommendations and risk assessments to ensure the compliance of policies and standards
  • Analyze, design and implement ongoing operation/maintenance of firewall infrastructure
  • Review and update Security policy, guideline, procedures Documents regularly
  • Identify and resolve production problems including application related and security related
  • Refine and produces vulnerability report to management for review on regular basics
  • Handle performance monitoring for all Internet servers and network equipment such as firewalls , Internet, DMZ and Intranet
  • Promote End User Security Awareness within the Group


  • University graduate in Computer Science / Engineering or equivalent
  • CISSP certification is a must.  Holding CISA and/or CCNA certifications are advantageous
  • 6 – 8 years’ technical experience in Microsoft Windows, AIX, Sun Solaris, Linux, CISCO router and switch, F5 ASM/APM/LTM, Checkpoint firewall, Juniper firewall, Trend Micro Deep Security, Splunk, Forcepoint Web Security Gateway, and ForeScout Network Access Control
  • Experience in Windows PowerShell, UNIX shell script and Python
  • Experience in performing vulnerability scanning, and penetration test
  • Strong information security sense in relation to business requirements
  • Excellent command of written English
  • Mature, independent and able to deliver quality results under tight schedule
  • Good communication and interpersonal skills


Please hit "Apply now" to attach your CV with your current & expected salary for these specific roles. We will contact you shortly. Or simply email your CV to and we will link you up to suitable opportunities.

Additional Information

Career Level
Not Specified
Not Specified
Years of Experience
Not Specified
Employment Type
Full Time, Permanent
Benefits & Others
Five-day work week, Flexible working hours, Medical insurance, Performance bonus

Company Overview

Teki'Spire specializes in Technology Recruitment, covering functions including Digital, Big Data, Business Intelligence, Application Development, Project Management, IT Security, Network and InfrastructureWe have a passion for Technology and with a proven track record in helping IT professionals to find their next dream job! Our clients are ranging from top tier multinational corporations, large scale HK companies, financial services institutions, and well-funded technology startups.