Technology Risk Management(2nd LoD)
Technology Risk Management(2nd LoD)
Your new company
Leading Bank in Hong Kong
Your new role Application Security
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV to conrad.chang@hays.com.hk, or call us now by +852-2230-7914.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. #1234386
Leading Bank in Hong Kong
Your new role Application Security
- Assist in reviewing IT initiatives and provide advisory from technology risk perspectives
- Assist to establish and review policies, guidelines, procedures in application security area
- Provide advisory and practical guidance to support technology risk and information security assessments, include vulnerability scanning, penetration test etc.
- Conduct regular assessment on application security
- Familiar with security testing tools e.g. Fortify, AppScan and Nessus, technologies on DevSecOps and industry good practice OWASP is preferable
- Provide Cyber Security incident response operation and support.
- Experience in OSINT, malware analysis and digital forensics.
- Research and evaluate on latest security threats and Cyber Threat Intelligence.
- Participate in Red & Purple Teaming exercises.
- Familiar with technologies on Firewall, IDS, IPS, SIEM, SOAR and Network/Cloud Infrastructure is preferable.
- Research and evaluate latest trend & technologies on information security and fintech area, such as FinTech, Artificial Intelligence, Big Data, Cloud Computing etc
- Conduct regular assessment on data center security
- Assist in planning of technology related risk management strategies, processes and work plans.
- Provide staff awareness training on cyber security
- Establish security dashboard with key risk indicators
- Conduct HKMA assessment (e.g. C-RAF)
- Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
- Over 2 years of experience in IT security, technology risk, risk management, compliance or IT audit function, gained from other sizable financial institutions
- Holding at least one recognized professional qualification under HKMA enhanced competency framework such as CISA, CISSP, CRISC is preferable.
- Familiar with HKMA TM-E-1, PCI-DSS, ISO 2700-series or other security risk management framework is an advantage
- Good command of written and spoken English with Mandarin is preferable
- Good communication and interpersonal skills
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV to conrad.chang@hays.com.hk, or call us now by +852-2230-7914.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career. #1234386
Summary
- Job Type
- Permanent
- Industry
- Banking & Financial Services
- Location
- HongKong
- Specialism
- Cyber Security
- Ref:
- 1234386
Talk to a consultant
Talk to Conrad Chang, the specialist consultant managing this position, located in Hong Kong
6604-06,66/F, ICC, 1 Austin Road West, West Kowloon
Telephone: +85222307914
Similar jobs to Technology Risk Management(2nd LoD)
Head of Technology Risk (Banking, Circa 100-120k)
Head of Technology Risk (Banking, Circa 100-120k)HongKongTech Risk Manager/ AM (Virtual Banking, Circa 40-60K)
Tech Risk Manager/ AM (Virtual Banking, Circa 40-60K)HongKongTech Risk Manager/Sr Manager (Banking, Circa 50-80K)
Tech Risk Manager/Sr Manager (Banking, Circa 50-80K)HongKongHead of Tech Risk
Head of Tech RiskHongKongHead of /Senior Manager, Technology Risk (circa 80-120K+bonus)
Head of /Senior Manager, Technology Risk (circa 80-120K+bonus)HongKong
JOB_12334801234386