ass information security manager in Hong Kong

posted
contact
robbert pauli, randstad hong kong
job type
permanent
salary
HK$ 450,000 - HK$ 600,000 per year

job details

posted
location
hong kong
specialism
information technology
job type
permanent
working hours
Full-Time
salary
HK$ 450,000 - HK$ 600,000 per year
reference number
91M0142723_1583390246
contact
robbert pauli, randstad hong kong
add to saved jobs print

job description

The assistant information security manager assists the development and
implementation of an organization-wide information security program and ongoing
activities to preserve the availability, integrity and confidentiality of Asia
information resources in compliance with applicable security policies, standards and
regulatory requirement.
This position consults and partners with the internal technical resources and other
Information Security personnel to enforce and verify compliance of information
security standards.


Description

- Develop, document, and maintain information security policies, procedures, and
standards across Asia Region.


- Embed a DevSecOps approach within application teams to ensure required
application security controls are implemented throughout the software
development lifecycle and coordinate the annual external penetration tests.
- Analyze and report on vulnerability management progress regularly and
facilitate remediation and mitigation actions.


- Act as a security advisor for Aegon Asia BUs for implementing security controls
across cloud environments.
- Perform information security control self-assessment and control testing to
determine compliance and control effectiveness according to Aegon information
security standards and regulatory requirements

- Assist Asia business units in developing the information security
program and serve as the primary point of contact for regional security issues.
- Conduct InfoSec risk assessment and decision recommendations for
company’s new IT initiatives and new 3rd party engagements.

- Monitor changes that may affect information security and make
recommendations on the need for policy changes.
- Initiate, facilitate, and promote activities to create information security
awareness throughout organization.
- Perform information security related entitlement reviews.

skills

no additional skills required

qualification

no additional qualifications required

educational requirements

Bachelor Degree