technology risk manager in Hong Kong

posted
contact
ian luong, randstad hong kong
job type
permanent
salary
HK$ 720,000 - HK$ 900,000 per year
apply now

job details

posted
location
hong kong
specialism
information technology
job type
permanent
working hours
Full-Time
salary
HK$ 720,000 - HK$ 900,000 per year
reference number
91M0128529_1544497000
contact
ian luong, randstad hong kong
apply now

job description

about the company.

Our client is a global financial services company and have footprints across in every continent. They have a 150-year history in some of the world’s most dynamic regions - with more than 86,000 employees in more than 60 markets.

about the job.

You will serve as the 1st line of defense for the Information and Cyber Security Management team in HK and will report into the Head of Technology Risk and Information & Cyber Security. Furthermore, you will be responsible for governing the respective first line owners of various Technology Domains from Group ITO and in country. In addition, you will have the opportunity to help enable future technology risk management initiatives in Hong Kong to align with Group Technology Risk Strategy, Policy, Standard and Process.

Your responsibilities will include:

  • Assess technology and ICS risks and ensure adequate controls and procedures are in place in the First Line of Defense and in compliance with of Group Technology Risk and IT Security policies, guidelines and standards.
  • Conduct regular review of the Regulatory Reporting requirements and ensure timely preparation and submission of the reports to regulators related to ICS perspective.
  • Identify thematic issues by gathering and evaluating ICS data from multiple sources including testing, risk indicators, incidents, losses, audit findings, etc
  • Provide consultancy to business units in terms of the ICS risk control, control monitoring and compliance assurance procedures

skills & experiences required.

  • University degree holder, preferably in IT or Computer Science major.
  • 5+ years of working experience with 2 years within the Cyber or Information Security space either within a Bank or consulting firms
  • Experience in conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience
  • Good experience in ICS governance, assessment, assurance, operations control, security management and/or audit in banks or financial institutions and related ISO standard (ISO 27001).
  • Good experience in Security Incident Response and handling of the threats in all aspects of ICS domains.
  • Professional Certification preferred – CRISC, CGEIT, CISSP, OSCP, CREST.

Interested candidates can apply through the portal or share their CV's to ian.luong@randstad.com.hk

For questions, please contact Ian Luong at 2232 3440.

skills

no additional skills required

qualification

no additional qualifications required

educational requirements

Bachelor Degree