Provide 2nd tier support on Managed Security Services, specifically on information security incident management; Investigate, respond and provide recommendations in a timely manner; Design and maintain SIEM rules with on-going tuning

Implement security devices (including UTM, IPS, WAF). Take ownership on total solution design and implementation

Prepare, review and update operation procedures and guidelines

Perform Managed Security Services devices change management; Test and apply patches or upgrades with records

Prepare service reports for customer and internal parties

Managed Security Services portal administration

Regular meeting with customer for service review

Handle ad hoc projects/ tasks as assigned

Degree holder in Information Technology or Computer Science or related subjects in information security or equivalent

A minimum of 3 years’ working experience in IT services with at least 2 years of which in information security or risk management areas

Professional certifications in information security such as CISSP, CISA, GIAC, CEH, ISO 27001 is an advantage but not a must

Experience in security incident analysis and handling

Experience in SIEM tool, Splunk, Firewall, IDS/IPS, UTM, WAF, UNIX and Windows system administration

Knowledge in vulnerability analysis as well as traffic, events and packets analysis

Knowledge in regular expression and SQL Statement Query

SIEM and networking technologies knowledge is an advantage

Good analytical and interpersonal skills

Able to work under pressure

Fluent in English and Chinese (Cantonese and Mandarin)

Candidate with more experience would be considered as Senior Security Analyst