Company Overview:
Mitrade is an award-winning global Contract for Difference (CFD) and forex broker, regulated by authorities in Australia (ASIC), Cyprus (CySec), the Cayman Islands (CIMA), and Mauritius (FSC). We were founded in Melbourne, Australia and have offices worldwide.
Leveraging our proprietary state-of-the-art technology, Mitrade has developed an integrated digital service platform tailored for investors. We offer market data, news, and analysis, as well as trading and risk management services within a comprehensive user-centric Fintech ecosystem. Serving more than three million users globally, Mitrade is accessible via various platforms such as mobile (iOS and Android), desktop applications, and web browsers.
Role Summary:
We are currently seeking a dynamic and experienced Senior Cybersecurity Engineer to join our team. This role is responsible for planning and implementing cybersecurity strategies to meet industrial (e.g. PCI) and regulatory (e.g. ASIC/CySEC) compliance requirements.
Job Description:
- Lead and oversee the maintenance and continuous enhancement of the company's cyber security processes, procedures, tools, and mechanisms for core infrastructure and network environments.
- Drive improvements to the company's overall cyber security posture through strategic planning, execution of long-term initiatives, and implementation of advanced security measures.
- Ensure compliance with cyber security regulations and manage responses to both external and internal audits effectively.
- Oversee daily monitoring and response to threats and attacks, including web application attacks, spear-phishing, intrusions, and malware.
- Lead incident response activities and develop strategies for effective threat mitigation.
- Enhance development processes and procedures, providing expert recommendations on security requirements and improvements.
Job Requirements:
- Bachelor’s degree in computer science/cybersecurity, with at least 5 years of experience in information security or network security.
- Extensive knowledge of WAF, OWASP Top 10, and DDoS attack principles and protections.
- Strong understanding of vulnerability management processes, including penetration testing, vulnerability assessments, and threat profiling.
- Advanced experience with intrusion detection and response using SIEM tools.
- Proficiency with one or more public cloud security products.
- Solid understanding of TCP/IP principles.
- Proficient in both Chinese and English, including daily communication and handling of IT compliance/audit documents.
Mitrade is at the cutting edge of FinTech with a team that excels in a fast-paced, collaborative environment. We seek analytical thinkers and executors with a data-driven approach, capable of managing complex multistakeholder projects and adapting to technological advancements.
Preferred Qualifications:
- Strong experience with cloud computing platform such as AWS and GCP.
- Solid experience with ELK, with proven expertise in implementing SIEM detection use cases tailored to evolving cyber security threats.
- Familiarity with compliance requirements across various regulatory and international standards, such as PCI-DSS, NIST, ASIC, CIMA, and EBA guidelines.
- Proven success in conducting attack simulations and/or threat detection and response.
- Relevant certifications such as CCIE, HCIE, CISP, CISSP, CCSP, OSCP, and experience as a technical consultant in security consulting firms.
- Experience in automating security tasks using custom scripts (e.g., Python).
- Experience with cyber security and data security compliance processes for international financial regulatory agencies, such as the European Union or Australia.
What You Can Look Forward To:
- Competitive compensation package.
- Career growth and personal development within a growing global organization.
- A flat organizational structure that values collaboration and transparency.