Senior Consultant - CyberSecurity (Technical Testing)

Company Description

Sia is a next-generation, global management consulting group. Founded in 1999, we were born digital. Today our strategy and management capabilities are augmented by data science, enhanced by creativity and driven by responsibility. We're optimists for change and we help clients initiate, navigate and benefit from transformation. We believe optimism is a force multiplier, helping clients to mitigate downside and maximize opportunity. With expertise across a broad range of sectors and services, our 3,000 consultants serve clients worldwide from 48 locations in 19 countries. Our expertise delivers results. Our optimism transforms outcomes.

In 2024 we announced our exciting partnership with Blackstone as our first financial investor since inception to support our company's continued growth. We have also been ranked by Vault as a Top 20 Consulting Firm to work for in the APAC region for 2025.

Job Description

Due to SIA' exceptional growth and cybersecurity demands in Asia, we are looking for a Senior Consultant to join our Cybersecurity team in Hong Kong. As a Senior Consultant, you will help to build our expertise and guarantee the quality of delivery to ensure market-leading practices for our Hong Kong office, taking into account the global nature of our organization and our clients.

JOB DESCRIPTION

Supervised by our Partner, Managing Director and Managers, you will help and work together with relevant stakeholders of our customers (CIOs, CISOs, IT Managers, etc) by addressing the following needs:

• Conduct vulnerability assessment and penetration testing for web application, network infrastructure, WIFI, mobile application, thick client application, API. end-points etc.
• Execute red and purple team exercise
• Assist client on mitigation or remediation, as well as providing recommendations and suggesting improvements in responding to vulnerabilities identified in penetration test or red/purple team
• Assist in conducting red and purple team simulation scenarios (such as insider threat simulations) to assess client detection and incident response capabilities
• Ability to assess security operations (in-house or SOC) and security incident response process for clients
• Assist client in the deployment of cybersecurity programs and solutions
• Assist in designing and assessing cloud security for clients
• Assist in designing network security and infrastructure hardening

As part of the firm's internal activities, your participation revolves around the following areas:

• The development or strengthening of our offers through training sessions, working groups, internal and external distribution of marketing materials
• Support in the publication activities (sector blogs, articles, insights, etc.)
• Business development by contributing to the definition of needs and participating in commercial activities (development of pitches, responses to RFP, etc.)

Qualifications

• Ideally 3-5 years of experience within cybersecurity and technology risk in Consulting and/or Financial Services
• At least a Bachelor or equivalent degree in Computer Science from top universities. Master degree in Information Systems Management or related is highly advantageous
• Penetration test related certification (e.g. OSCP, OSCE, etc.) is highly advantageous
• Able to work well autonomously as well as in a team. Highly analytical and possess good entrepreneurial spirit
• Excellent presentation and communication skills
• Proficient English (written and oral) is a must. Mandarin and/or Cantonese would be highly appreciated

Additional Information

Sia Partners is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.

Sia is an equal opportunity employer. All aspects of employment, including hiring, promotion, remuneration, or discipline, are based solely on performance, competence, conduct, or business needs.