Where Your Career Takes Flight
Airport Authority Hong Kong (AA) manages and operates Hong Kong International Airport, one of the finest and busiest airports in the world.
We now invite high calibre talent with creativity and passion to join us for a rewarding and meaningful career journey.
We care for our people and provide colleagues with a fair, open and supportive workplace.
By joining us, you will contribute to the continued success and growth of a key infrastructure and economic engine of Hong Kong, gaining invaluable experiences in a unique environment and enjoying boundless opportunities to unleash your full potential.
Together we will share the pride of our leadership status in the global aviation industry and our commitment to sustainability.
Job Description
Manage threat intelligence and cyber-attacks trends. Analyze, apply and notify the measures timely to related IT colleagues and management. Define the mitigation plan and actions for the ad hoc threats and cyber-attacks.
Design and evolve the cybersecurity architecture and adopt / implement latest cybersecurity technologies and tools. Also to ensure strategic investments in cybersecurity tools and platforms.
Lead cybersecurity technology adoption across security teams, facilitating the creation of system-wide cybersecurity automation, tactics, and standard procedures to enhance operations efficiency, maturity, and consistency.
Lead the deployment of cutting-edge technologies according to cyber threats. Plan cybersecurity tactics and develop procedures to detect and respond to the latest cyber-attacks and endure the procedures shall compliance with Critical Infrastructure Ordinance cybersecurity measures and incident handling requirements.
Develop automated workflows for threat detection and response and collaborate with other teams to orchestrate for proactive defense and policy threat detection and response.
Requirements
- Degree holder in Information Technology, Computer Science, or related disciplines with at least 8 years of IT experience with hands-on technical expertise in large-scale network and cybersecurity projects. Skilled in enterprise-level network and cybersecurity planning, implementation, and operations
- Professional certifications in Information Security Manger (CISM), Certified Information Security Professional (CISP), Certified Information Systems Security Professional (CISSP), Cisco Certified Internetwork Expert (CCIE) Huawei Certified ICT Expert (HCIE), Windows/Linux/Virtualization/Firewall certificates
- Solid experience and knowledge in information security management in large-scaled IT environments, involving wire and wireless network, internet, wide area networks, hybrid and public cloud, virtual machine, web, mobile applications, Al and multi-vendor mission critical systems. Proven experience in aviation industry or critical infrastructure is an advantage
- Strong knowledge and stay abreast in network and cybersecurity technologies, threat intelligence, platforms, and applications, LLM, Gen-Al and Agent security. Have in-depth knowledge of operating system software (i.e. Windows, Redhat Linux or other UNIX based systems) and virtualization technologies
- Hands-on working experience in deploying and/or managing modem cybersecurity solutions, e.g. Firewall, BGP, OSPF, MPLS, SDWAN, CON, load balancer, NAC, WAF, EDR/Antivirus, SIEM, SOAR, ASM, NOR, SASE, OLP, Proxy, ONS, automation scripting etc.
- Proven management skills to communicate, organize and liaison with IT staff, vendors, users, business partners, and LEA etc. on security related activities and incident response
- Must be a self-starter requiring minimal supervision and a technical team leader
- Excellent command of spoken and written English and Chinese with knowledge of Putonghua is an advantage