Tech
Senior Manager
Major Responsibilities
Manage the company’s cyber security posture
Initiate and develop mitigation actions for any identified improvement areas or adverse trends
Establish process for cyber threat intelligence collection, analysis and dissemination process
Conduct cyber resilience related assessments for the company and provide input to risk metrics reporting
Coordinate and develop cyber resilience strategy for the company, provide interpretation of cyber resilience controls and regulatory requirements, and recommend industry best practices and cyber resilience controls enhancement
Coordinate with relevant parties for preparing cyber security budget
Manage the Security Operations Center (SOC)
Liaise with internal and external auditors in performing cyber resilience assessment and intelligence-led cyber attack simulation testing (iCAST)
Define the cyber security and resilience requirements, work with relevant parties on architectural design for the projects and on-going enhancements
Perform any other ad hoc duties or projects as assigned
Requirements
University education preferably in information technology, cyber security, computer science or related discipline
Minimum 8 years of experience in cyber security, technology risk management and auditing with at least 3 years’ experience at managerial level
Good understanding of technology risk management and cyber security best practices, with broad knowledge of cyber risk and security issues, requirement, trends, and data privacy and industry practices
Familiar with ISO27001 and HKMA CFI 2.0 framework, technology risk management and cyber security related guidelines. Certification of CISA, CISM, CDPSE, CISSP and/or CEH is preferred
Team player with sound interpersonal and communication skills as well as excellent problem solving and analytical skills
Good command of written and spoken English and Chinese
Good presentation, documentation and report writing skills
Candidates with less experience may be considered for the position of Manager (Cyber Resilience)