Hot Jobs Full List
			www.infotech.com.hk

Job Key No 39728 Job Title/ Category Contract Systems Analyst (Bid Ref 60202-1) Number Of Vacancy 1 Relevant Field Others Nature Contract Deadline 02 Jul 2026 Contract Period 03 Aug 2026 to 31 Jan 2027 (5 months) Payroll under InfoTech Employer Business Government T26 Contract Location Base Correctional Services Department, Integrated Technology Section, 27/F, Wanchai Tower, Wanchai Work in Guangdong Province N/A Monthly Salary Range HK$ N/A - N/A Project Nature (T26) To support the Thematic Inspection, Security Risk Assessment and Audit (SRAA) and Privacy Impact Assessment (PIA) of CSD IT systems. Duties - Serve a contract assignment under InfoTech's headcount, full-time second to serve the CSD; The proposed staff shall be responsible for providing technical support to the Thematic Inspection, SRAA and PIA of CSD IT systems that include, but not limited to, the followings: (a) Participating in procurement of SRAA and PIA services, such as preparing the requirement specifications and participating in tender evaluation; (b) Liaising with parties concerned (including system administrators, security consultant, vendors) for conducting the SRAA and PIA, such as compiling the returns; (c) Assisting project manager to monitor the progress of the SRAA and PIA services; (d) Ensuing quality assurance of deliverables provided by the security consultant; (e) Providing technical assistance to internal auditors of CSD in conducting the Thematic Inspection of CSD IT systems; (f) Providing guidance to system administrators for the SRAA, PIA and Thematic Inspection exercise; (g) When IT security incident occurs, assisting IT system manager in evaluating the incident and perform preliminary assessment, handling the incident, and recover the systems and perform damage assessment; (h) Conducting vulnerability scanning of CSD IT systems by using IT security scanning tools provided by CSD and summarize the findings and recommendations for management review; (i) Performing any other duties as assigned by the supervisor. Yrs of Total Post-Quali Exp 4.0 Yrs of Relevant Exp 1.0 Requirements (a) Experience in supporting the SRAA and PIA projects; (b) Experience in supporting the internal security compliance audit is an advantage; (c) Experience in handling IT security incident is an advantage; (d) Familiar with Government regulations, policies, standards, guidelines, methodologies and qualify requirements, such as Baseline IT Security Policy, IT Security Guidelines, Practice Guide for Information Security Incident Handling and Stores and Procurement Regulations; (e) Holding Certified Information Security Professional (CISP) from China Information Technology Security Evaluation Centre (CNITSEC), Certified Information Security Member (CISM) from CNITSEC, Certified Information Systems Security Professional (CISSP) from International Information System Security Certification Consortium (ISC)2, Global Information Assurance Certification (GIAC) Security Expert (GSE) from SANS Institute, Certified Information Systems Auditor (CISA) from Information Systems Audit and Control Association (ISACA), ISO/IEC 27001 Lead Auditor from International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC), or equivalent security certification; (f) Good communication and skills, both written and verbal, in Chinese and English; (g) Self-motivated, independent, diligent, polite, pro-active, fast-learning and good communication and problem-solving skills; (h) Undergoing integrity check by HKPF is required. Technical Skills: . At least 2 years' experience in Information Security Management (ISM); . At least 2 years' experience in IT Security (ITS); . At least 2 years' experience in Security Risk Assessment and Audit (SAA); . At least 2 years' experience in IT Security Scanning Tools (SST); . 1 year's experience in Server Virtualisation Technology (SVT) is an advantage; . 1 year's experience in Security Incident Detection and Handling (SDH) is an advantage; . 1 year's experience in Anti-Virus Technology (AVT) is an advantage; . 1 year's experience in Data Encryption Technology (DET) is an advantage; . 1 year's experience in Data/File Backup Technology (DFT) is an advantage; . 1 year's experience in Endpoint Security Solutions (ESS) is an advantage; . 1 year's experience in Intruder Detection/Alert Technology (IDA) is an advantage. Non-technical Skills: . At least 2 years' experience in managing Government IT standards (ITG); . At least 2 years' experience in IT service/outsourcing management (OUT); . At least 2 years' experience in IT procurement (PRO); . At least 2 years' experience in vendor management (VMG); . At least 2 years' experience in work with the Government (GOV); . 1 year's experience in IT audit (ITA) is an advantage. - Bachelor's degree/Higher Diploma in Computer Science, IT or equivalent; - At least 4 years' post-qualification experience in which at least 1 year's relevant experience in a similar post and in a comparable capacity. Last Update 17 Jun 2026 Apply To itcareer@infotech.com.hk Direct Line 2836 0363

This is an online active job list, but not an exhausted list.  Top senior, sensitive, confidential and inactive jobs are not listed here. Please read the Disclaimer and Information Collection Statement.  Copyright 1990-2024. InfoTech Services (Hong Kong) Limited.  All rights reserved.