Manager (Information Risk Management)

We are looking for high-calibre individuals to join the Information Risk Management Department for serving the HKMC Group.

Job Descriptions:

• Assist in developing information security strategy, policy and guideline;
• Provide information security guidance to business and technical teams;
• Participate in risk assessment engagements for new or existing IT initiatives and operations by evaluating the security architecture and conducting threat modelling;
• Apply expertise and problem-solving skills to tackle cybersecurity challenges that span multiple technologies and security domains;
• Participate in security incident response and investigation; and
• Research and evaluate latest security threats and technology solution, such as AI, cloud, big data and mobile.

Requirements:

• Degree holder in Computer Science, Information Systems or relevant disciplines;
• A minimum of 6 years’ experience in information technology, information security, risk management, compliance or IT audit function, preferably gained from banking or financial institutions;
• Holder of professional certificates such as Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP) or equivalent;
• Sound knowledge in security architecture, regulatory requirements, industry’s standards and best practices; and
• Good analytical, technical, report writing, communication and presentation skills.