- Perform incident response and forensic analysis of compromised systems, identify and provide recommendations for remediation of DDoS events and the ability to reverse engineer malware.
- Responsible for daily incident management and act as secondary resource for customer interaction
- Handle all configuration and critical issues for customer incidents
- Provide email and phone support for incident support
- Build play books for events and provide responses
- Responsible for daily deliverables to customer (emails/etc.)
- Formulate and direct incident response efforts, prioritize those response efforts, and create legible incident reports that describe the compromise vector, attacker methodologies, and artifacts of data exfiltration.
- Perform forensic analysis of Windows and Unix systems to identify compromise artifacts.
- Build sandbox / test lab environments to evaluate malicious code
- Bachelor Degree in Engineering, Computer Science and Relevant Discipline
- Experience in Server and OS administration and operations OR Networking are preferred
- Experience to work in the Security Operation Centre or in Security Operations is an advantage
- Knowledge of red or blue team is an advantage
- Programing experience, PHP, python, script is required
- Familiar with Big Data Engine such as Splunk or ELK
- Self-motivated and work within a team environment and will be responsible for coordinating work actions with that team.
- Proficient in English, languages in Cantonese or Putonghua is an advantage
If you wish to have an exciting and rewarding career, send us your CV via the following methods.
HKT is an equal opportunity employer and welcomes applications from all qualified candidates. Information provided will be treated in strict confidence and will only be used for recruitment-related purposes. Personal data provided by job applicants will be used strictly in accordance with the employer's personal data policies (www.hkt/privacy-statement), a copy of which will be provided immediately upon request.