Regional Information Security Senior Manager (Up to 90K)

Location: Hong Kong
Contract Type: Permanent
Specialisation: Technology
Salary: HK$900000 - HK$1200000 per annum
REF: BBBH242753_1592474412



Job Duties:





  • Oversee formal risk analysis and self-assessments for various Information Services systems and processes, including third party security management;
  • Help ensure compliance with industry and regulatory requirements (GDPR, PCI, CCPA, etc);
  • Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk Management to remediate new and outstanding issues; track security-related issues in the electronic GRC system;
  • Promote and monitor our corporate wide IS Security awareness program;
  • Maintain expertise on security trends through training, research and development in order to mitigate potential security exposures.

Requirement:



  • 10+ years of experience in a combination of information security and IT;
  • Proficien in both English and Chinese;
  • Hands-on governance experience demonstrating a willingness to get into the weeds and do the dirty work if necessary;
  • Ability to think strategically for long-term success and effectively manage relationships with key stakeholders across the enterprise;
  • Business-savvy, tested leadership, strong managerial and interpersonal skills; able to integrate information security into the business as an enabler;
  • Able to lead, influence, collaborate, and communicate effectively with Board/Executive Team, C-suite level executives, and employees at all levels; must be able to translate information security and risk-related concepts to technical and non-technical audiences;
  • Exceptional interpersonal skills, including teamwork, facilitation, and negotiation;
  • Excellent written, verbal, communication, and presentation skills;
  • Security certification/accreditation including, CISM, CISSP, and GIAC are highly desired;
  • Experience in a global retail environment would be preferred;
  • Bachelor's degree in computer science, information systems, computer engineering, electrical engineering, system analysis or related field of study, or equivalent experience.