Security Specialist - Enterprise EDR & SIEM Deployment (Hong Kong)
about the company.
Join a leading System Integrator (SI) as a Security Specialist focusing on enterprise-scale workplace protection. This position offers a prime opportunity to drive advanced security architecture and engineering excellence across diverse client networks. The successful candidate will spearhead critical endpoint optimisation and incident readiness initiatives across Hong Kong.about the team.
about the job.
Implement and support enterprise-grade endpoint security solutions across diverse client infrastructures.
Utilise hands-on experience to manage and configure Endpoint Detection and Response (EDR) tools such as CrowdStrike, SentinelOne, Microsoft Defender for Endpoint, or Carbon Black.
Support the assessment, onboarding, policy configuration, tuning, and operational readiness for all EDR and endpoint security deployments.
Assist in delivering broader endpoint security solutions, including complex migrations, tool coexistence, policy tuning, and operational enhancement activities.
Support the implementation and optimisation of related security controls, including data loss prevention (DLP), email security, attack surface reduction, and vulnerability management.
Collaborate closely with corporate clients, internal project teams, and partner vendors to deliver secure, scalable, and operationally effective workplace security solutions.
Perform comprehensive security reviews, validate configuration alignment to global best practices, and identify key opportunities to improve endpoint protection.
Leverage the wider Microsoft security ecosystem, including Microsoft 365 and Intune capabilities, to deliver fully integrated endpoint, compliance, and protection outcomes.
skills & experience required.
Minimum 3-5 years of dedicated experience within a cybersecurity engineering, system integration, or enterprise SecOps role.
Proven hands-on experience deploying, migrating, and tuning tier-one EDR platforms (e.g., CrowdStrike, SentinelOne, Microsoft Defender, Carbon Black).
Strong familiarity with SIEM query languages, with practical exposure to SPL for Splunk, KQL for Microsoft Sentinel, or SQL highly regarded.
Demonstrated technical knowledge of workplace security infrastructure, including MDM/UEM tools like Microsoft Intune and Microsoft 365 compliance controls.
Strong analytical mindset with a background in vulnerability management, email security protocols, and attack surface reduction.
Excellent communication skills in English are mandatory; proficiency in Cantonese or Mandarin is highly advantageous for regional client and vendor collaboration.
