HK SecOps Engineer at Sopra Steria

Hong Kong, Hong Kong Island, Hong Kong S.A.R. -

Full Time

Start Date

Immediate

Expiry Date

14 Jun, 26

Salary

0.0

Posted On

16 Mar, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Operations, Incident Management, Threat Analysis, Phishing Email Analysis, Vulnerability Management, Endpoint Security, Server Security, Azure Cloud Security, SIEM, SOAR, Microsoft Sentinel, EDR, XDR, Microsoft Defender E5, Vulnerability Scanner, Firewalls

Industry

IT Services and IT Consulting

Description

Sopra Steria is a listed European technology leader specializing in Consulting, Digital Services, and Software. With over 52,000 employees worldwide across Europe, North America and Asia, the Group supports organizations in driving their digital transformation and delivering sustainable business value. Our Hong Kong entity operates alongside Singapore to deliver Infrastructure, Cloud and Cybersecurity services to clients across the Asia Pacific region. Objective: For this position, we are looking for a SecOps Engineer to assist one of our client in the cosmetic and personal care industry. The SecOps Engineer ensures that the company’s information systems are operationally secure across all geographical regions. This role is a key addition to the Infrastructure team. The engineer acts as a Level 3 technical escalation point for global security incidents. The workload is distributed as 80% Run (Cybersecurity incident management) and 20% Build (continuous improvement). Responsibilities: 1. Security operations & maintenance (80% Run) L3 Incident resolution: Providing Level 3 technical assistance for security incidents Threat analysis: Analyzing and qualifying security threats or incidents escalated by the 24/7 external MSSP (L1/L2). Email security alerts: review and analyse reported phishing emails Vulnerability management: Performing regular vulnerability assessments and driving the remediation of security weaknesses across the global park. System protection: Ensuring the operational security of 7,000 endpoints, 800 on-premise servers, and Azure cloud resources. Global scope support: Maintaining security for a worldwide infrastructure including 1,500 stores, 40 offices, and 3 factories. 2. Security evolution (20% Build) Tooling optimization: Contributing to the continuous adjustment and improvement of security platforms to ensure they remain adapted to the company's needs. Project contribution: Supporting the deployment of new security tools for servers, endpoints, and cloud services Technical environment: The role operates within a technical stack primarily focused on Microsoft and specialized security solutions: SIEM/SOAR: Microsoft Sentinel. EDR/XDR: Mainly Microsoft Defender E5 suite Vulnerability management: dedicated vulnerability scanner Other sources of logs / Network security: Firewalls, Cloud Proxy Cloud infrastructure: Azure Cloud (a CNAPP is in place) Team & organization: Global integration: The engineer joins a Network and Security team of 10 professionals spread worldwide, including 2 dedicated SecOps members. Direct manager is based in Europe (France). The Network and Security team is part of a wider infrastructure team of ~60 people and part of an IT team of ~250 people. The mid-term objective is to operate in a "Follow the Sun" model. Autonomy: As the rest of the team is located on different global sites, a high level of autonomy is required. Collaboration: Maintaining strong functional links with other infrastructure teams (Local Support, Hosting, Workplace) is essential. Experience: A minimum of 5 years in information security or security operations (SecOps). Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field. Soft-skills: High level of autonomy and advanced communication skills are required to integrate the geographically distributed team with remote management Languages: Fluent English is mandatory. Knowledge of local languages (Cantonese or Mandarin) is considered a plus. French is a strong plus, as most members of the team are French-speaking. Certifications: Technical certifications such as CISSP, CompTIA Security+, or Microsoft Security tracks (SC-200/AZ-500) are a nice to have. Localization & working Conditions: Location: Hong Kong. Organization: The position allows for remote work, though weekly presence at the office is required. Availability: Participation in non-business hours operations and on-call activities (weekends and nights) is required to support the global infrastructure. Around 1 week/month of on-duty activities are expected, only to manage P1 escalations by external Managed Security Service Provider Regular team buildings 18 leave days / year Insurance, GP, Dental, Optical Annual bonus Working hours: from 9am to 6pm, Monday to Friday Training and certifications paths

Responsibilities

The SecOps Engineer will primarily focus on security operations and maintenance (80% Run), acting as a Level 3 escalation point for global security incidents, analyzing threats, managing vulnerabilities, and ensuring the security of endpoints, servers, and cloud resources across a worldwide infrastructure. The remaining 20% Build involves contributing to security platform optimization and supporting the deployment of new security tools.