Mox Bank in Hong Kong is a newly established Virtual Bank, offering a range of products to customers through our App to bring a new banking experience. Our job as the Cyber Security team is to ensure the Bank is Safe, Sound and Secure for our Customers.
A unique opportunity has opened for experienced team members in Software Engineering, Computer Science, Cyber Security or similar disciplines to gain hands on experience in a high-performing Cyber Security team.
The diverse range of hands-on experience in this role is a rare opportunity. You will be required to follow established processes, contribute to and build new processes that will enhance automation, provide front-line services to our internal business stakeholders to operate to contribute to enhance our cyber security posture and defense.
Primary responsibility is to support the Cyber & Digital Trust team and predominately focusing on the following duties:
Maintain up-to-date knowledge of the latest attacks, vulnerabilities, mitigation strategies, and industry best practices to enhance Security Operation procedures and security tooling.
Perform hands-on cyber security incident response, management, and investigations.
Conduct proactive threat hunting activities.
Drive technical management of digital forensic investigations and e-Discovery exercises.
Accountable for undertaking complex research and analysis of threat actors.
Manage the collection of relevant and actionable Threat Intelligence (TI) and enhancement of TI platforms.
Strong focus on defensive and offensive research.
Support the security engineering team developments, including the verification and testing associated with new software and scripts and embed these into the Security Operations Team.
Deliver and present intelligence to various stakeholders on Strategic, Tactical, Operational and Technical levels.
Report writing and security awareness especially relating to vulnerabilities, threat landscape and intelligence.
As a senior member in the Security Operations Team, mentor and support analyst staff to enhance the overall Security Operations and Threat Intelligence function.
Strong communication skills and ability to communicate risks with key stakeholders and provide risk-based business perspectives on threats, attacks and incidents to drive incident response decisions.
You should be able to demonstrate:
Strong hands-on and technical experience across a number of core cyber security solutions and technologies: SIEM, EDR, VM, Secure Internet Proxies, Open Source Technologies, OSINT
Experience and exposure to malware reverse-engineering.
The ability to see opportunities to improve, break them into logical pieces of work, and follow them through to execute at a technical level.
A critical thinker, with strong problem-solving & analytical skills with an ability to enhance or automate processes including the threat intel platforms, sources, and tooling.
Strong working knowledge of the MITRE ATT&CK framework.
Proficiency in at least one or more coding languages (Python, Java, etc.)
A positive attitude and an eagerness to expand current cloud security knowledge.
Strong team player to collaborate with a diverse team.