Job description


  • Entry level
  • No Education
  • Salary to negotiate


KEYTEO is a French IT Consulting group based in HK. We have expertise on Digital Transformation and we work with local and multinational cross-industry groups worldwide. We are currently looking for an Infrastructure Security Specialist to join our team in a permanent position.Role and Responsibilities:

- Work closely with SOC in daily operation and review security requirements
- Exception management: Evaluate and manage infrastructure security exceptions
- Vulnerability management: Conduct scan, reporting and remediation follow-up
- Incident management: Report and follow security incidents and their remedial actions
- Change management: Conduct security assessment for infrastructure changes
- Review security architecture proposed by other infrastructure teams
- Deliver innovation initiative to improve overall infrastructure security and efficiency
- Manage and execute the Infrastructure related security projects
- Be the security Interface with stakeholders at all levels, from technical engineers to senior management locally, regionally and globally
- Work closely with other risk and security departments, including all 3 lines of defence
- Facilitate and coordinate Audit and Inspection missions
- Cyber reporting: Production of various cyber security reporting (KPIs; KRIs). Coordinate among Infrastructure teams to contribute to external stakeholders reporting and requests
- Coordinate within Infrastructure teams the review and execution of operational / managerial supervision controls to ensure adequate risk coverage and compliance with global / local regulations;
- Follow-up the correction of managerial supervision anomalies and action plans
- Risk Control Self-Assessment (RCSA) for RESG/GTS in Asia
- Manage the CLSA framework of Infrastructure teams
- Conduct security & risk awareness training to the Infrastructure teams

Competencies - Knowledge

· Expert knowledge in and IT operational risk management
· Expert knowledge and experience in IT security
· Knowledge and experience in common SIEM tools and security products (Security Information and Event Management tool)
· Professional certification recognized by Regulatory bodies like HKMA, e.g. CISM, CISA or CISSP, is mandatory
· Knowledge and experience in IT infrastructure (speak the language, expertise not required)
· Knowledge and experience in a banking environment will be beneficial but not essential
· Familiar with Asia regulations around Cyber Security and Risks related topics will be preferred (such as CRAF for HKMA, TRM for MAS)


· Good skills in Microsoft office, especially Excel
· Good knowledge of SharePoint architecture and design

Soft Skills

· Good verbal, written, and interpersonal communication skills
· Able to organize time, multitask, and define priorities (autonomy)
· Able to interact with all level of the organization from operators to executive management members
· Must be able to work collaboratively within a complex organization, across multiple cultures, geographies and disciplines


· English proficiency required – other spoken languages in the region are a plus.

  • excel