ITJS     Hot Jobs Full List   
www.infotech.com.hk 
      ITJS  
Job Key No 39360
Job Title/ Category Contract Project Manager (Bid Ref 59870-1)
Number Of Vacancy 1
Relevant Field Others
Nature Contract
Deadline 29 May 2026
Contract Period 02 Jul 2026 to 31 Jan 2027 (6 months)
Payroll under InfoTech
Employer Business Government T26 Contract
Location Base Admiralty, Ho Man Tin, Yau Ma Tei
Work in Guangdong Province N/A
Monthly Salary Range HK$ N/A - N/A
Project Nature (T26) IT projects and on-going support for Security Bureau (SB), Auxiliary Medical Service (AMS) and Civil Aid Service (CAS) on security matters.

(A) Outsourced development and maintenance of IT systems of Tier 2 and Tier 3 classification with Internet and internal functions for thousands of users.

(B) In-house and outsourced implementation and enhancement of IT security infrastructure, network architecture, and mobile device management solutions, etc.

Remark: Early service termination may be resulted due to poor performance or unavailability of funds, etc.
Duties - Serve a contract assignment under InfoTech's headcount, full-time second to serve the SBU;
The appointed staff is required to work in the following areas:

(A) Design, implementation and operations of IT security controls including the more stringent security controls for Tier 2 and Tier 3 systems as specified in Appendix C of the IT Security Guidelines (G3) :-

1. Establish and participate in IT security organisation including the information security steering committee and the IT security management unit, hold regular meetings, prepare necessary documents and follow up outstanding issues.

2. Formulate and regularly review IT security management framework including the risk registers to document identified risks, likelihood and severity of occurrence, and mitigation and monitoring measures.

3. Establish and regularly review IT security threat management mechanism for threat identification, detection, monitoring and response.

4. Formulate and organise IT security training programme for all personnel involved in support and operations of IT systems, and formulate and enforce contractual obligation with outsourced contractors.

5. Spell out, monitor and ensure necessary IT security controls are in place and effective throughout system development life-cycle and on-going system operations, in particular in the areas of access control, operations security, system acquisition / development / maintenance, business continuity, etc. Assist in user acceptance planning and execution in IT security perspectives. Ensure quality procedures, techniques and tools are used.

6. Review system development deliverables, documentation and operating procedures, identify IT security shortfalls and recommend improvements.

7. Bring up, drive and ensure on-time completion of compliance work including IT security risk assessment and audit, privacy impact assessments, vulnerability scanning, penetration tests, configuration review, code scanning, regular review on usage of privileged accounts, etc.

8. Formulate and maintain information security incident response plans, take lead to respond to IT security incidents.

9. Prepare and maintain documents and ensure timely submission to DPO for compliance monitoring and audit.

(B) IT project management

1. Take lead and be responsible for IT security aspects of multiple system development projects and IT infrastructure enhancement projects within a tight project timeline. Serve as the focal point to all levels of users and multiple contractors regarding IT security related matters.

2. Drive and monitor project progress, manage issues and delay and escalate to management when necessary, review and supplement system design, examine quality of deliverables, ensure the projects are delivered on time and meet user requirements and government IT standards.

3. Elicit and analyse security and technical requirements, prepare specifications for procurement of IT equipment and outsourced services.

4. Plan, participate and control all phases of projects including systems analysis and design, procurement and installation, implementation, system and user acceptance testing, production rollout, system nursing and maintenance.

5. Conduct regular assessment, review and risk management of the projects, proactively alert potential project risks and issues to projects team members.

(C) Carry out any other IT related tasks assigned by the supervisor.
Yrs of Total Post-Quali Exp 8.0
Yrs of Relevant Exp 2.0
Requirements 1. Bachelor's degree holder in Computer Science, Information Technology or equivalent.

2. Possess at least one of the industry recognised IT security certification (e.g. CISA, CISSP, CISP, etc) is required.

3. Experience in compliance of government IT security policies and guidelines, IT security risk management and threat management (e.g. S17, G3, Security Risk Assessment and Audit, and Privacy Impact Assessment) is required.

4. Experience in managing outsourced IT security and network enhancement projects, from requirement study, system design, implementation, to testing and deployment is required.

5. Strong communication and liaison skills with multiple user groups and contractors, experience in eliciting, analyzing, and documenting user requirements, as well as planning and coordinating larger-scale user acceptance and production rollout are required.

6. Experience in managing government IT projects and preparing general project deliverables (e.g. SA&D report, project schedule, resources plan, project progress report, UAT plan, production rollout plan, etc.) is required. Experience in preparing project deliverables in government formats (e.g. Project Management Plan, Project Initiation Document, Post Implementation Departmental Return, Project Highlight Report, Quality Assurance Report, etc.) is preferred.

7. Experience in government IT product and service procurement is preferred.

8. Experience in Xinchuang (XC) products and solutions is preferred.

9. Project management certification (e.g. PRINCE2, PMP) is preferred.

10. Overtime and on-call outside office hour are required when necessary,

11. Independent, self-motivated and good sense of responsibility; and

12. Pleasant personality and good interpersonal skills.
Technical Skills:
. At least 5 years' experience in Information Security Management (ISM);
. At least 5 years' experience in IT Security (ITS);
. At least 5 years' experience in Network Design (NDN);
. At least 5 years' experience in Network & System Management (NSM);
. At least 3 years' experience in Security Risk Assessment and Audit (SAA);
. 3 years' experience in Project Management Professional (PMP) (PMP) is an advantage;
. 1 year's experience in Endpoint Security Solutions (ESS) is an advantage.
Non-technical Skills:
. Good coordination skills is a must;
. At least 5 years' experience in IT service/outsourcing management (OUT);
. At least 5 years' experience in project management (PRM);
. At least 5 years' experience in quality assurance (QAS);
. At least 5 years' experience in quality management (QMT);
. At least 1 year's experience in managing corporate IT security framework (CSF);
. 3 years' experience in work with the Government (GOV) is an advantage;
. 3 years' experience in the management and support of Government systems and services (GSS) is an advantage;
. Excellent written English is an advantage;
. 3 years' experience in IT procurement (PRO) is an advantage.
- Bachelor's degree/Higher Diploma in Computer Science, IT or equivalent;
- At least 8 years' post-qualification experience in which at least 2 years' relevant experience in a similar post and in a comparable capacity.
Last Update 15 May 2026
Apply To itcareer@infotech.com.hk
Direct Line 2836 0363


This is an online active job list, but not an exhausted list.  Top senior, sensitive, confidential and inactive jobs are not listed here. Please read the Disclaimer and Information Collection Statement.  Copyright 1990-2024. InfoTech Services (Hong Kong) Limited.  All rights reserved.