- Sha Tin Distr., New Territories Sha Tin Distr. New Territories, Hong Kong Hong Kong

工作地点
职位描述
岗位职责
ABOUT THE ROLE
We are seeking an experienced and proactive Senior Network & Security Engineer to take ownership of our enterprise infrastructure and security posture. In this high-impact individual contributor role, you will manage our network environment end-to-end, enforce endpoint security policies, and serve as the primary technical liaison with our external security partners. The ideal candidate combines deep technical expertise with the ability to operate autonomously in a fast-paced, cross-functional environment.
KEY RESPONSIBILITIES
Network Infrastructure
• Design, manage, and continuously optimize Fortinet firewalls, VPN tunnels, and SD-WAN configurations to ensure high availability and performance.
• Monitor network performance, proactively identify bottlenecks, and implement improvements aligned with business requirements.
Endpoint Security
• Administer SentinelOne EDR across the organization, ensuring comprehensive threat detection, investigation, and response coverage.
• Manage Microsoft Intune (MDM/MAM) to enforce device compliance, application security policies, and conditional access controls.
System Compliance & Policy
• Develop, implement, and maintain Group Policy Objects (GPO) to enforce security baselines and standards across all Windows environments.
• Conduct regular compliance reviews and remediate configuration gaps in alignment with industry frameworks and internal policies.
Threat Management & Incident Response
• Serve as the primary point of contact for coordinating with external security partners (e.g., Sygnia) on active threat monitoring, incident response, and post-incident remediation.
• Participate in after-hours incident response when required, ensuring timely containment and resolution of security events.
Project Leadership
• Lead network and security projects independently from requirements gathering and solution design through implementation and documentation.
• Provide technical guidance and recommendations to stakeholders on security architecture decisions and risk trade-offs.
REQUIREMENTS
• Experience: 7+ years of hands-on experience in network engineering and IT infrastructure, with at least 3 years in a dedicated information security role.
• Technical Expertise: Demonstrated proficiency with Fortinet (firewalls, VPN, SD-WAN), Microsoft Intune (MDM/MAM), Group Policy (GPO), and endpoint detection and response (EDR) platforms, with SentinelOne strongly preferred.
• Language: Full professional fluency in English, Cantonese, and Putonghua (Mandarin) is required for this role.
• Autonomy: Proven track record of independently troubleshooting complex network and security issues and driving projects to completion without close supervision.
• Vendor Coordination: Prior experience collaborating with third-party security vendors, managed security service providers (MSSPs), or Security Operations Centers (SOCs).
PREFERRED QUALIFICATIONS
• Active industry certifications, including one or more of: Fortinet NSE 4 or NSE 7+, Microsoft 365 Certified: Endpoint Administrator, CISSP, or CompTIA Security+.
• Experience with incident response planning and execution in global or geographically distributed environments.
• Background in infrastructure hardening, vulnerability management, or security architecture in enterprise settings.
• Familiarity with security considerations for AI and LLM integrations, including API security, data privacy controls, model access governance, and risk assessment for AI-powered tooling deployed within enterprise environments.
重要安全守则
申请工作时,切勿提供您的银行或信用卡详细资料。不要转账或完成无关的在线调查问卷。如果您发现可疑内容,请举报此招聘广告。