Share this Job

Date: 12-Mar-2017

Location: Hong Kong   

We're proud to be one of the world's leading airlines. Our reputation is built on a long track record of success, an ongoing commitment to our home Hong Kong, and on the delivery of customer service that’s straight from the heart.  We're able to offer you unique opportunities to let your passion for travel and aviation fly.



Department: Information Management

Reports to: Enterprise Security Architect

Join our IT Risk & Security Team to contribute in maintaining IT infrastructure and application security architecture for the company.

Key Responsibilities:

  • Define security strategies and drive security projects to improve security posture of the company. Lead the architecture design and product selection of infrastructure and application security controls
  • Manage security product vendors and system integrators in security solutions design
  • Lead the evolution of security infrastructure and applications and maintain the security products standard of the company to cope with changing security threats landscape.
  • Ensure all IT solutions align with enterprise security architecture and comply with security policies, frameworks and standards.
  • Engage with project teams to provide security input into solution designs
  • Keep up-to-date with security threats and technologies, and maintain relationship with security vendors and market analysts.
  • Assist the IT Risk and Security team in information security governance tasks.


  • University degree in Computer Science or related disciplines.
  • Minimum 8 years of related IT security experience, with at least 5 years in security architecture, engineering or development positions
  • Security certifications such as CISSP and CISM preferable.
  • Architecture certifications such as TOGAF preferable
  • In-depth skills and experience in the following security technologies:  identity and access management, network security and firewalls, encryption and PKI, malware and vulnerabilities management, data loss protection, secure application development and penetration testing.
  • Knowledge in information security standards such as ISO27001, COBIT and OWASP. 
  • Excellent analytical and problem solving skills.
  • Excellent breadth of thinking, able to provide pragmatic solutions that consider all relevant constraints whether technical, financial, organisational, risk, or capability based.
  • Excellent verbal and written communication skills and the ability to interact professionally with diverse group of stakeholders.
  • Airline knowledge is a plus.
  • Passion and ability to learn and apply new technologies.

Application Deadline: 31 Mach 2017

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our personal data policy and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. All related information will be kept in our file for up to 24 months. A copy of our Personal Information Collection Statement will be provided upon request by contacting our Data Protection Officer.

Job Segment: Architecture, Engineer, Developer, Computer Science, Application Developer, Engineering, Technology

Apply now »