jobs in Hays Recruitment

Hays Recruitment Hiring! Full Time Manager, Information Security (Red Team)NEW in Hong Kong - Ricebowl

Manager, Information Security (Red Team)NEW

Undisclosed

Hong Kong

Share
Save

Working Location

  • Hong Kong Hong Kong Hong Kong

Job Description

Responsibilities

Your new company

A market-leading digital services company operating large-scale consumer-facing platforms, with a strong focus on technology innovation, security, and operational resilience.

Your new role

  • Establish and lead an internal Red Team / Offensive Security function, driving penetration testing, adversary emulation, and threat simulation initiatives.
  • Plan and execute red team engagements to evaluate the effectiveness of security controls across enterprise environments.
  • Conduct security assessments covering networks, cloud platforms, applications, endpoints, and emerging technologies.
  • Perform compromise assessments, investigate suspicious activities, and identify opportunities to enhance detection and response capabilities.
  • Collaborate with security operations, engineering, and technology teams to improve cyber defense readiness through purple-team exercises.
  • Deliver technical reports and risk assessments, providing actionable recommendations to stakeholders and management.
  • Research emerging threats, attack techniques, and offensive security methodologies to continuously enhance testing strategies.
  • Mentor and develop team members while promoting best practices in offensive security and threat emulation.

What you'll need to succeed

  • Bachelor's degree in Information Security, Computer Science, IT, or a related discipline.
  • 6+ years of cybersecurity experience, including 3+ years in offensive security, adversary simulation, or red teaming.
  • Hands-on experience in penetration testing, attack simulation, vulnerability exploitation, and security assessments.
  • Strong understanding of network, application, cloud, endpoint, and Active Directory security.
  • Familiarity with industry frameworks such as MITRE ATT&CK, OWASP, and threat intelligence methodologies.
  • Experience with offensive security tools and custom testing frameworks.
  • Knowledge of Linux/Unix and Windows administration, networking concepts, and enterprise security technologies.
  • Exposure to cloud security, mobile security, virtualization, database security, and application security.
  • Programming or scripting experience with languages such as Python, Java, C, or C++ is an advantage.
  • Relevant certifications such as OSCP, OSCE, OSEP, GPEN, CREST CRT, CEH, CISSP, CISM, or CISA are highly desirable.
  • Strong analytical, communication, and stakeholder management skills, with a passion for cybersecurity and emerging technologies.

What you need to do now

If you're interested in this role, click 'apply now' or contact Farrah Tang at *************. You may also share your updated CV via ************************

Important Information

Never provide your bank or credit card details when applying for jobs. Do not transfer any money or complete unrelated online surveys. If you see something suspicious, Report this Job ad.

Learn More