Save Job Back to Search Job Description Summary Similar JobsBuild scalable security with cloud, DevOps & AI innovationHigh-impact role shaping automated and predictive security opsAbout Our ClientThe company is known for its innovative approach to technology and commitment to delivering high-quality solutions.Job DescriptionDesign, implement, and operate security controls across cloud and on-premises environments to protect enterprise infrastructure and applicationsBuild and maintain security automation solutions for vulnerability management, detection, and remediation workflowsIntegrate security controls into DevOps pipelines (CI/CD) to enable secure-by-design and shift-left practicesDevelop and enforce policy-as-code and security guardrails within infrastructure-as-code (e.g., Terraform) and platform deploymentsCollaborate with DevOps, Platform, and Engineering teams to embed security into system architecture, deployment, and operationsMonitor, analyze, and respond to security events using SIEM platforms (e.g., Microsoft Sentinel) and other detection toolsImplement and optimize vulnerability management processes, including integration with tools such as QualysBuild dashboards and reporting to provide actionable security insights, risk prioritization, and remediation trackingApply AI/ML techniques and advanced analytics to enhance threat detection, risk prediction, and security operations efficiencyDesign and implement secure automation workflows, including human-in-the-loop and controlled autonomous operations with auditability and rollback mechanismsEnsure compliance with internal policies and external frameworks (e.g., ISO 27001, NIST, CIS) through robust security engineering practicesContinuously improve security posture through automation, threat modeling, and proactive risk mitigationThe Successful Applicant5+ years of experience in Security Engineering, Cloud Security, DevSecOps, or related domainsStrong hands-on experience with cloud platforms (e.g., Microsoft Azure, Alibaba Cloud) and cloud security best practicesProven experience integrating security into DevOps environments, including CI/CD pipeline security and automationSolid experience with infrastructure-as-code and automation tools such as Terraform, Ansible, Python, or PowerShellExperience with SIEM platforms (e.g., Microsoft Sentinel) and security monitoring, detection, and responseFamiliarity with vulnerability management tools (e.g., Qualys) and remediation lifecycle managementUnderstanding of security frameworks and compliance requirements (ISO 27001, NIST, CIS, etc.)Experience applying AI/ML or data-driven approaches to security operations, such as anomaly detection or predictive risk scoringStrong problem-solving skills with the ability to design scalable, reliable, and secure systemsAbility to communicate technical security concepts and risks effectively to both technical and non-technical stakeholdersRelevant certifications (e.g., CISSP, GSEC, AZ-500, SC-200) are advantageousWhat's on OfferA competitive salary package ranging from HKD 600,000 to HKD 700,000 annually.Opportunities to work in a large organization.Comprehensive benefits package and professional development support.If you are passionate about cybersecurity and want to contribute to a thriving organization, apply now!ContactNicholas NgQuote job refJN-042026-7003017Phone number+852 2530 6118Job summaryFunctionITSpecialisationIT DevelopmentWhat is your area of specialisation?Industrial / ManufacturingLocationHong Kong IslandJob Type:PermanentConsultant nameNicholas NgConsultant phone+852 2530 6118Job ReferenceJN-042026-7003017
