about the company.
My client is a well-known financial institution and they are currently looking for an Associate Director or Senior Manager who specializes in Cybersecurity and also with a tech consulting firm or financial services background, and the right candidate will be responsible for defining and implementing IT policies and information security practices across the business.
about the job.
- Define, advise, and execute the information security management solution, framework, and related IT security policies and compliance measures
- Continuously assess IT security practices and policies to enhance the company's security posture
- Lead initiatives to evaluate the adequacy and effectiveness of IT controls and policies, ensuring compliance with relevant standards
- Proactive reviewing of the status and providing advisory and solutions on workflow enhancement, emerging security threats, and vulnerabilities through vulnerability assessments and security reviews
- Collaborate with internal teams and external vendors to manage end-to-end processes across Cyber Security and IT risk and data protection
- Ensure the delivery of comprehensive cybersecurity services, covering prevention, detection, and response, in collaboration with offshore teams or third-party vendors
- Design and implement an ongoing information security training and awareness program for personnel at all levels
skills & experiences required.
- Bachelor's Degree or above in Computer Science, Business Administration, or related discipline
- Minimum of 10 years of experience in IT infrastructure, strategic planning, and project management, with at least 4 years in the cyber security/information security field (including prevention, detection, response, and monitoring tools)
- Prior experience working in Big 4, other well-known tech consulting firms, or the financial services industry (banking/insurance) is essential
- Strong expertise in developing and implementing IT policies and procedures for enterprise-level businesses.
- Experience with cloud security, including Azure/AWS, is a significant advantage
- Familiarity with cyber security frameworks such as ISO 27001, PCI DSS, or CIS
- Knowledge of methodologies, tools, best practices, and processes across various cybersecurity areas, including penetration testing and vulnerability analysis
- Minimum of 3 years in a managerial/lead role, demonstrating solid experience in team management and vendor coordination
- Excellent communication and problem-solving skills
- Proficiency in both written and spoken Chinese and English is essential
- CISA/CISM/CISSP certification is a plus
- Candidates with less experience will be considered for the Senior Manager position
If you’re the right match for this exciting opportunity please don’t delay and click APPLY NOW; or for more information, you can reach out to Kelvin Chu at kelvin.chu@randstad.com.hk
...