IT - Senior Security Engineer (Mandarin Speaker)

Company Overview

The Zeal Group (https://www.zfx.com) is a global financial corporation with a diversified portfolio of businesses spanning across Europe and Asia. Headquartered in London, with international affiliates in Hong Kong, Greater China, Taipei, Bangkok, Vietnam, Cambodia, Moscow, Abu Dhabi, Cairo. ZFX provides a wide range of financial products & services (FX, Commodities, Indices, Cryptocurrencies) to investors, professional traders, and financial institutions worldwide.

Zeal Technology Solutions Limited (ZTS) is a group company under the Zeal Group. We are young, energetic, and rapidly expanding. Our Hong Kong office is the Asia Pacific headquarter and we provide strategic management, technology, marketing and manpower support to our affiliates across the region

Principal Accountabilities :

• Implement security related products and controls (like DLP, EDR, etc) both on-premises and cloud
• Participate actively and support company security driven projects and initiatives
• Provide consulting services to Development, Infrastructure, Business Departments and vendors regarding Information Security and Risk management
• Support IT and Business departments with risk analysis programs (Risk assessment management matrix)
• Provide appropriate review and quality assurance as preparation for upcoming audit (external and internal)
• Provide appropriate review and risk assessment of external connectivity and services facing Internet/DMZ, review and confirm high/medium risk changes (dual control and 4 eyes principle)
• Provide Development, Infrastructure, external vendors with guidance on the risk resolution and risk mitigation processes
• Develop in cooperation together with Infrastructure platform engineering forces the core build for the company
• Create security processes and technical best practices for their implementation across all IT functions, setup security and quality management process within the company
• Work closely with Development and Infrastructure teams to develop secure best practice solutions
• Build and define an overall application and infrastructure security approach for use across the company
• New solutions research and development
• Work closely with Compliance and HR teams to ensure the execution of information security related awareness program in the company globally
• Participate in selection, implementation, and support of company’s Information Security systems.
• Participate in delivery of SIEM and SOC solutions
• Build and manage the on boarding of new security tools to SIEM (Security Incident & Event Management), infrastructure processes and SOC (Security Operations Centre)
• Manage security incidents in interaction with other support and business functions
• Drive engineering, architecture, and reporting quality improvements
• Provide, manage, and report on deliverables as a member of the team (design deployment and support documentation, support procedures and handover to other teams)
• Provide consultancy to other teams, contribute to the projects and day-to-day activities
• Contribute to the management of the technology direction and roadmap of security tools, investigate technologies, run proof of concepts and testing.

Requirements

• At least 3 years of experience in a Fintech or Financial services environment, in a senior position
• Expert knowledge and solid technical expertise on information security
• Security products knowledge (antivirus/malware scanning blocking, anti-spam, enterprise security suits) current internal and external network threats
• Information security principles for business applications practical knowledge is a plus
• Information Security experience in international financial institution is a strong plus
• Solid knowledge of WINTEL and UNIX platforms and surrounding technologies
• Advanced knowledge of Networks design and architecture – firewalls, proxies, etc
• Advanced knowledge of Databases security design and architecture (MySQL and PostgreSQL)
• Banking/Finance applications overview, trading and infrastructure platforms, application flows
• ITIL knowledge (change control process, change management, problem/incident management, procedures, guidelines, etc)
• Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
• Good communication skills, result driven and pro-active approach, responsible, ready for overtimes
• Good presentation, leadership and communication skills
• Project management skills, vendor management
• Ability to thrive under stressful situations
• Able to deal with the tasks with minimum information and troubleshoot/perform on the fly
• CISSP and / or CISA certifications would be a benefit
• English and Mandarin language proficiency is a MUST

Benefits

• Medical
• Optical
• Life Insurance
• Quarterly Performance Bonus
• Work From Home (Wednesdays)
• Work From Home / Anywhere Policy (T&C applies)