IT Security Analyst - International FinTech Platform

Company Overview Our client is the first industry-supported financial network for private banks and wealth management firms, facilitating access to issuers of structured products. Their transaction network enables buy-side firms to price and place orders for these products. The application suite is built natively on AWS, incorporating both infrastructure and managed services. It employs top-tier design patterns (microservice architecture in containers, orchestrated by Kubernetes). You will gain hands-on experience with a well-established financial technology company and work alongside a dynamic team across various disciplines. Responsibilities Assist in managing the IT security agenda for clients, which includes adhering to strict requirements surrounding data protection, access, and resiliency. Support regular client audits and surveys by reviewing existing controls. Serve as a key resource for addressing client inquiries related to IT security and conducting client-facing reviews. Collaborate with internal DevOps, Infrastructure, and Analyst teams to provide accurate responses and evidence for client requests. Actively contribute to implementing security practices and controls within the company. Work with the DevOps team to design and implement security measures specifically for the company's AWS application. Identify necessary changes if any security gaps are found, prioritize, and design these changes in collaboration with the DevOps team and developers. Academics and Experience Background as a developer or infrastructure engineer, with exposure to network controls, gateways, and firewalls. Held a similar role in the candidate's current position (Security or Network Analyst). Key Skills Strong IT Foundation: Deep understanding of core IT concepts, including network protocols, database management, and microservices architecture. Advanced Security Knowledge: Strong awareness and hands-on experience with key security topics such as gateways, firewalls, cloud computing, authentication methods (OAuth, certificates), encryption, and modern cybersecurity practices. Cloud Infrastructure Experience: Proven experience in a cloud environment, particularly with Amazon Web Services (AWS). Hands-On Operational Skills: Proficient in using monitoring tools like Grafana for security analysis and incident response. Secure Software Development Lifecycle (SDLC): Excellent understanding of the SDLC, including experience with Agile methodologies and various testing frameworks to ensure security is integrated throughout the development process. Excellent Communication: Superior verbal and written communication skills, with fluency in English. Thorough Documentation: Proven ability to create clear, concise, and comprehensive documentation for security processes and systems. Strong Interpersonal Skills: Excellent analytical, problem-solving, and organizational skills, along with a proactive and driven attitude. Knowledge of Financial Markets: Not required. Location This is a full-time position based in Central, Hong Kong.