lingnan
Senior Information Security Analyst (at the rank of Senior Officer), ITSC
Job description
Lingnan University is one of the eight publicly funded institutions in the Hong Kong Special Administrative Region (HKSAR) of the People’s Republic of China (PRC) and has the longest established tradition among the local institutions of higher education. It is widely recognised for providing quality education with a focus on whole-person development and conducting high-impact research for a better world. Moving forward, Lingnan University is well positioned to take lead as a comprehensive university in arts and sciences in the digital era, with impactful research and innovations.
Lingnan University offers undergraduate, taught postgraduate, and research postgraduate programmes in the Faculties of Arts, Business, Social Sciences, and the Schools of Data Science, Graduate Studies and Interdisciplinary Studies. To foster interdisciplinary collaboration and scientific progress, Lingnan University established the Lingnan University Institute for Advanced Study (LUIAS), attracting distinguished scholars from around the world to collaborate with its faculty and students. With traditional strengths in arts, business, social sciences, and interdisciplinary studies, the University aims to equip students with practical knowledge and critical thinking skills to thrive in the future. Subsequent to the establishment of the School of Data Science and LUIAS, Lingnan University is transforming into a hub for global leaders to develop and promote human-centric technology and social policies. Further information about Lingnan University is available at https://www.ln.edu.hk/ .
Applications are now invited for the following post
Senior Information Security Analyst (at the rank of Senior Officer) Information Technology Services Centre (Post Ref.: 26/185)
Responsibilities
Application Security
- Act as the Security Champions Program Captain
- Maintain up-to-date knowledge of information security practices and trends, and apply to the Security Champions Program
- Provide guidance and support to security champions to identify and address security issues throughout the Software Development Lifecycle (SDLC),
- Practice DevSecOps and secure software development
- Identify potential security issues of internal applications by threat modelling
- Conduct security testing such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Component Analysis (SCA)
- Ensure that applications and systems comply with internal standards, the data governance framework, and code of practice for handling personal data
- Conduct cybersecurity risk assessment and personal data protection impact assessment
Cyber Threat Intelligence
- Identify, track, and predict cyber threats in relation to the University’s digital assets.
- Analyze the cyber threat data and intelligence to understand the tactics, techniques, and procedures (TPPs) used by threat actors, and develop the relevant detection rules.
Other Day-to-Day Operations
- Triage security alerts, investigate, and respond to security incidents
- Promote security awareness among students and staff members, including IT teams
- Operate the security stack such as Vulnerability Management, Attack Surface Management (ASM), Web Application Firewall (WAF), Data Loss Prevention (DLP), NDR, EDR, SIEM, SOAR, and maintain good cyber hygiene
- Perform any other duties as assigned by supervisor(s)
Requirements
- Bachelor’s degree or equivalent in Computer Science, Information Technology, Cybersecurity, or a related field
- At least 3 years’ working experience in the IT sector
- Practical experience in handling security incidents, vulnerability management, and security monitoring.
- Relevant experience in DevSecOps and data governance will be advantageous
- Ability to work independently and across teams
- A good command of English and Chinese
- Relevant certificates (e.g. CISSP, CISA, CISM, CEH) are highly desirable
- Previous working experience in a university or similar environment will be an advantage
Candidates with less/more experience will also be considered for appointment at the relevant rank.
Salary and Fringe Benefits The rank and commencing salary will be commensurate with qualifications and experience. Fringe benefits, where applicable, include annual leave, medical and dental benefits, mandatory provident fund and gratuity.
Application Procedure (online application only)
Please click " Apply Now " to submit your application. Personal data collected will be used for recruitment purposes only .
We are an equal opportunities employer . Review of applications will continue until the post is filled. Qualified candidates are advised to submit their applications early for consideration.
The University reserves the right not to make an appointment for the post advertised, or to fill the post by invitation or by search. We regret that only shortlisted candidates will be notified .


