Analyst, IT Security Engineering, IT
On-site · Hong Kong, Hong Kong
Job Summary
IT Security Analyst to engineer and support security solutions across IAM, network intrusion detection, endpoint protection, email security, and data leakage protection. Responsible for conducting penetration testing, vulnerability scanning and code review on IT systems (web, network, server, thick client, mobile apps, AI apps) to identify risks and remediate. Perform security assessments on architecture/design and SaaS like Microsoft 365; conduct cyber-attack simulations and red teaming. Assist in evaluating, designing, planning and implementing security solutions (Web Application Firewall such as Akamai/Cloudflare/AWS/Azure WAF, Single Sign-On with Microsoft Entra/Okta/Cisco Duo, Zero Trust with Zscaler/Palo Alto Networks/Microsoft Entra Private Access), malware sandboxing, and provide first/second level support for security controls. Build strong working relationships with IT Security, IT, and business teams; act as SME for certain IT security tools; design and deliver strategic security initiatives with business partners.
Required Qualifications
- Bachelor Degree in IT or Computer Science
- 3-5 years related experience in cybersecurity
- Industry Certifications (e.g. OSCP)
- Good understanding of security principles and technologies
- Experience in Penetration testing, vulnerability scanning and assessment
- Experience with security services and tools (SIEM, EDR, DLP, web filtering, malware analysis)
- Strong communication skills in English and Chinese
- Project management skills
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.