IT Security Associate Director(1.5 line) , Financial Services

Responsibilities

• Define and review cyber-threat framework and instill risk control mechanism
• Perform Security Risk Assessment and Audit
• Perform Privacy Impact Assessment, Compliance Audit and Penetration Testing
• Develop and maintain corporate-wide technology risk management and cyber resilience policy and process in compliance with the regulator's requirements
• Coordinate to evaluate emerging cyber threat scenario for continuous improvement on cyber security response preparation for Business Continuity Management (BCM)
• Promote security awareness and ensure compliance with applicable security standards
• Collect data on cybersecurity related risk, attacks, breaches and incidents, including external data and statistics as appropriate.
• Play a governance role on the IT outsourcing service provider. Perform regular security assessment on IT outsourcing service provider.

Requirements

• Bachelor degree or above in Information Systems or Computer Science
• At least 5-year working experience in IT Risk/ security across Financial Services
• Good understanding of technology requirements from Asia regulators such as MAS, HKMA, RBI, and CBRC.
• Related certificates such as CISM, CISA, CEH, CISSP, CRISC, etc. holder is preferred
• Candidates with less experience might be considered as Manager
• Good command in spoken and written in Cantonese and English

Interested individuals can click apply now and send updated resume (in WORD format) to Mannie CHIU for further information.