Group Manager, Cyber Defense

Date:  23-May-2022
Job Req ID:  1866
Company:  John Swire & Sons (H.K.) Limited


A picture containing text, clipart

Description automatically generated

John Swire & Sons (H.K.) Limited


A highly-diversified and global corporation, the Swire Group’s businesses encompass property, aviation, beverages and food chain, as well as marine services and trading & industrial activities. Its core businesses are mainly focused in Asia, with its key operations in Hong Kong and the Chinese Mainland. Within Asia, Swire's activities come under the Group's publicly quoted arm, Swire Pacific Limited, which is the largest shareholder in two Hong Kong listed companies: Swire Properties and Cathay Pacific Airways.


John Swire & Sons (H.K.) Limited is the holding company of the publicly-listed conglomerate, Swire Pacific Ltd. Our Cybersecurity team is now inviting candidates to apply for the following position:


Group Manager, Cyber Defense

This role aims to develop long-term Cyber Defense strategies, to advance our cyber threat detection and response capabilities. He/she will support cybersecurity programmes and conduct research on security technologies protecting on-premises and cloud environments. The job holder will also look after core cyber defense functions, including security operations, managed SOC, CSIRT, security incident response, threat intelligence, threat hunting, and managed detection response. 



  • Be the primary contact person of managed SOC work closely with operating companies to monitor, analyze, and respond to cyber threats
  • Promote the orchestration and automation technologies in the event analysis and incident response process together with the managed service provider
  • Maintain awareness of security incidents response process, and responsible for further investigation from threat intelligence alerts
  • Maintain and improve Cyber Defense response capabilities and be accountable for all IR/investigations/forensics activities
  • Manage and advance DLP/EDR by increasing visibility of threat identification and response through the endpoints
  • Develop and review Cyber Defense tools and security operation processes to ensure Cyber Defense policies are fulfilled effectively
  • Prepare threat analysis and intelligence communication letter, including recommendations to mitigate cyber threats on Swire systems and applications
  • Provide senior management with oversight for cyber threat identification, triage, and response of incidents which could lead to security breaches



  • Bachelor’s degree holder or above with major in Information Security Management / Computer Science and Technology / Network and Telecommunication / Information Systems Management
  • At least 10 years of cybersecurity experience with at least 3 years in cyber defense or security operations
  • Solid technical knowledge and experience in SIEM, threat intelligence platforms, Cloud platforms, EDR, MDR, Cyber threats and exploitation methods, IOC and infrastructure security in a dementalized environment
  • Obtained cybersecurity certifications, e.g. CISSP, OSCP, CCNP, CHFI, GCIH, would be desirable
  • Solid knowledge of developing security operation processes, e.g., security patch management process, privileged access management process, OS lifecycle management process etc.
  • Excellent communication skills in both written and spoken English and Chinese. Fluent Putonghua is desirable


At Swire, we are committed to creating an inclusive and supportive working environment for all our people regardless of their age, gender, gender identity, sexual orientation, relationship, family status, disability, race, ethnicity, nationality, religious or political beliefs. We believe in creating an environment where people feel comfortable at work and are able to realise their full potential.


We offer a competitive package to the right candidate. If you meet the qualifications and are interested in this position, you can send your application by clicking ‘Apply Now’. We will contact all shortlisted candidates.


The Swire group is an equal opportunity employer. All applications will be used exclusively for selection purposes and handled confidentially by authorised personnel only. Your application may also be considered for other suitable positions within the Swire group (please indicate clearly on your application if you would not like to be considered for other positions within the group.) Following the data privacy ordinance, all unsuccessful applications will be destroyed after an appropriate time.