Senior / Technology Risk Manager (Cyber Security Control Division)
Bank Of China (Hong Kong) Limited Hong KongSenior / Technology Risk Manager (Cyber Security Control Division)
Roles and Responsibilities
Application Security
Cyber Security
Platform Security
Cyber Awareness
Job Requirements:
Application Security
- Assist in reviewing IT initiatives and provide advisory from technology risk perspectives
- Assist to establish and review policies, guidelines, procedures in application security area
- Provide advisory and practical guidance to support technology risk and information security assessments, include vulnerability scanning, penetration test etc.
- Conduct regular assessment on application security
- Familiar with security testing tools e.g. Fortify, AppScan and Nessus, technologies on DevSecOps and industry good practice OWASP is preferable
Cyber Security
- Provide Cyber Security incident response operation and support.
- Experience in OSINT, malware analysis and digital forensics.
- Research and evaluate on latest security threats and Cyber Threat Intelligence.
- Participate in Red & Purple Teaming exercises.
- Familiar with technologies on Firewall, IDS, IPS, SIEM, SOAR and Network/Cloud Infrastructure is preferable.
Platform Security
- Research and evaluate latest trend & technologies on information security and fintech area, such as FinTech, Artificial Intelligence, Big Data, Cloud Computing etc
- Conduct regular assessment on data center security
Cyber Awareness
- Assist in planning of technology related risk management strategies, processes and work plans.
- Provide staff awareness training on cyber security
- Establish security dashboard with key risk indicators
- Conduct HKMA assessment (e.g. C-RAF)
Job Requirements:
- Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
- Over 2 years of experience in IT security, technology risk, risk management, compliance or IT audit function, gained from other sizable financial institutions
- Holding at least one recognized professional qualification under HKMA enhanced competency framework such as CISA, CISSP, CRISC is preferable.
- Familiar with HKMA TM-E-1, PCI-DSS, ISO 2700-series or other security risk management framework is an advantage
- Good command of written and spoken English with Mandarin is preferable
- Good communication and interpersonal skills
Job ID 494307
More Jobs From Bank Of China (Hong Kong) Limited
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong
Boost your career
Find thousands of job opportunities by signing up to eFinancialCareers today.Recommended Jobs
