The Supervisor of Cyber Security is responsible for IT security systems and functions for the organization. He/she is responsible for supervising the engineers and supporting the Cyber Security team in all related Cyber Security tasks.

• Oversee the daily operations of the Security Operation Center (SOC) and supervise the Cyber Security team, including incident management, reporting, monitoring and operation metrics.
• Manage the health, configuration and optimization of security tools, including SIEM, EDR/XDR, SOAR platforms.
• Manage alert queues to reduce false positives and implement strategies to mitigate “alert fatigue” among the team.
• Lead the development and continuous update of incident response plans, specialized playbooks (e.g., ransomware, phishing), and operational workflows.
• Conduct post-incident reviews (lessons learned) to identify root causes and improve defense strategies.
• Lead proactive threat hunting initiatives and supervise regular vulnerability assessments and penetration tests to identify security risks.
• Partner with IT leadership to develop strategies that enforce security requirements and address identified organizational risks.
• Act as a technical Subject Matter Expert (SME) on cyber security tools, best practices, and emerging threat trends.
• Research, evaluate, test and recommend the implement new security solutions across infrastructure, application, and cloud environment, ensuring alignment with security architecture and compliance.
• Continuously evaluate and apply automation techniques (SOAR) to enhance the efficiency and effectiveness of current security operations.
• Participates in forensic investigations and compliance reviews.

Experience: Minimum 3+ years’ experience in cyber security directly related to the duties and responsibilities specified.

Education: Bachelor’s degree in Computer Science, Cyber Security, or a related field.

Language Ability: Proficiency in English/Mandarin/Cantonese preferred.

Computer Skills: Strong preference for advanced certifications, such as CISSP, CISM, GCIH, OSCP, CEH, PMP or equivalent certification preferred.

Knowledge/Certificates:

• Excellent communication skills (oral and written)
• Ability to communicate complex technical concepts to non-technical stakeholders.
• Strong analytical skills to analyze security requirements and relate them to appropriate security controls.
• Strong technical knowledge of SIEM, EDR/XDR, firewalls, WAF, vulnerability management, and security monitoring tools.
• Solid understanding of network, system, application, cloud, and endpoint security architecture.
• Familiarity with security frameworks, risk management concepts, and regulatory or audit requirements.
• Manage tasks and timelines effectively to ensure timely delivery of security projects in line with approved project schedules.
• Experience with penetration and vulnerability testing techniques and fixtures.
• Experience working with incident response, penetration test, forensic.
• Proficient in automation and agentic technologies to enhance the efficiency and effectiveness of security operations. (e.g., N8N, LLM, Power Automate)