- delivering cyber security assurance and best practices oversight for HKDL T&D portfolio of products, platforms and services ecosystems, across complex multi-cloud, multi-partner environments.
- working closely with global partners, internal T&D teams, other LOBs and external vendors
- providing information security related advisory in accordance with corporate and segment standards, industry practices and external regulations.
- Planning and ensuring information security assessments are conducted on HKDL T&D applications according to corporate standards
- fostering a sense of teamwork and collaboration while driving effective dialogue, spirit of continuous improvement, and team-oriented decision making
- driving team to manage security risk metrics and end to end remediation
- facilitating the internal or external audits, penetration testing, and red team activities relating to HKDL T&D
- participating in information security incident response team to handle information security incidents, work closely with segment counterpart in conducting investigations, and prepare incident reports
- Ensure effective communication with other T&D sub-teams and with other partners
- Act as the focal contact point with US partners about information security and compliance in T&D
- Best practices sharing and learnings with other sites, and working side-by-side with the global information security team
- Collaborate with teams to establish appropriate measures to reduce the risk of both accidental and malicious data disclosure
- Interactions with vendors to understand the new solutions in the marketplace and propose to management if needed
- Provide value added input/ consultancy to the business partners and internal teams in security architecture and driving security by design
- Provide advice, recommendation and good practice in information security and compliance
- In partnership with application teams and other stakeholders, define and support the implementation of appropriate remediation plans to address identified gaps
- Support the closure of key cyber security threats and vulnerabilities (. zero-day vulnerabilities or during the Project Development Lifecycle)
- Maintain existing local managed privileged access management solution and develop a roadmap for additional capabilities
- Identify, propose and oversee the implementation of cross-team information security related program
- Providing leadership around any large-scale security & compliance projects created to execute remediation for any significant gaps identified, which may include the involvement of cross-functional teams
- Capable to position and drive security initiatives as a business enabler
- Be the change champion and drive the others toward commitment to security
- Able to define, formulate and implement security strategy and potential roadmap
- Design and define security framework and architecture
- Bachelor's Degree or above in Computer Science, Technology, Engineering, Information/ Cyber Security, or relevant disciplines
- Minimum of 10 years working experience in information/ cyber security, IT audit/ governance/ compliance, technology risk management, or equivalent
- Holder of at least one industry recognized certification in information security (CISSP, CISA, CISM, or
- Prior experience in leading a team with solid understanding in information security and compliance related processes
- Possess knowledge of cyber security principles, information security risk managements, information/ cybersecurity controls and reviews to ensure adequate controls and adherence to company's information security policies and standards
- Solid working experience in adopting security related framework/standards, such as PCI-DSS, Sarbanes Oxley (SOX), PDPO, GDPR, MITRE ATT&CK, etc.
- Good knowledge in control related best practices . NIST, ISO 27001, SSAE21, COBIT, ITIL, etc.
- Knowledge of secure coding best practices, source code review, and internet threat vectors such as the OWASP top 10
- Excellent written and verbal communication skills in English and Chinese, with the ability to communicate technical topics to management and non-technical audiences
- Strong collaboration and interpersonal skills
- Strong problem solving, decision making, and analytical skills
- Attention to details, self-motivated and a good team player
-
Hong Kong Disneyland Resort Hong Kong, 香港 Permanent 全职Résumé du poste: · Responsibilities · Monitor and follow up with IT teams for any non-compliance issues. Provide practical advice and coordinate plans for remediation/ mitigation of risks and exposure; review remediation results · Coordinate internal and external audit work over ...
-
HARBRIDGE PARTNERS Hong Kong, 香港 全职VP/ Associate Director, AML Compliance – Equities/ Securities · Team Lead, Trade Surveillance & AML Monitoring · Location: Hong Kong · Main Duties and Responsibilities: · Covering and manging the team for AML/CTF, Trade Surveillance/ Monitoring and FATCA/CRS · Provide AML/CTF gu ...
-
Aptitude Asia Hong Kong, 香港 全职Responsibilities · To perform risk assessments, maturity analysis and security control test, in order to monitor information security compliance · Provide security compliance assessment report and recommendations to management · Oversee the implementation and compliance with Grou ...
-
Larson Maddox Hong Kong, 香港 全职Compliance Manager - Chinese Securities · Responsibilities: · Reporting to Head of Compliance · Provide compliance advisory on FICC products within a Chinese security house or retail brokerage. · Ensure adherence to regulatory requirements and guidelines. · Develop and update com ...
-
TalentQuest HR Limited Hong Kong, 香港 全职Key responsibilities · Responsible for leading the Investment & Insurance Compliance to coordinate and follow up on the latest regulatory requirements and provide compliance related advice to business units. · Take part in following up on regular requests and enquiries raised by ...
-
Gough Recruitment Hong Kong, 香港 全职Responsibilities · Ensure adherence to SFC licenses for financial advisory and fund management, specifically types 1, 4, and 9. · Assist in the management of compliance matters, including engaging with regulators and external auditors for compliance audits. · Prepare compliance c ...
-
Bank Of China (Hong Kong) Limited Hong Kong, 香港 全职Bank of China limited first opened its branch office in Hong Kong in 1917. After the listing of BOC Hong Kong (Holdings) Limited, a subsidiary of the Bank, on the Hong Kong Stock Exchange in 2002, Bank of China maintained the branch in Hong Kong which continued to hold a full ban ...
-
Ashford Benjamin Ltd Hong Kong, 香港 全职Responsibilities: · Responsible for compliance program, policies and procedures · Identify, monitor, and communicate regulatory changes trends and proposals to senior management · Review marketing materials and products, · Liaise with securities regulators and preparing regulato ...
-
IGNITE RECRUITMENT HONG KONG LIMITED Hong Kong, 香港 全职Responsibilities: · Work closely with manager in managing & maintaining information security tools, i.e. Firewalls, Antivirus & Patch Management Software · Collaborate with IT teams to investigate suspicious security & network events · Develop security guidelines and conduct Inf ...
-
Aptitude Asia Hong Kong, 香港 全职Job Responsibilities: · Facilitate and monitor compliance with the firm's Code of Conduct and other core compliance policies. · Review employee disclosures, personal account dealings, and gifts and entertainment requests to identify potential conflicts of interest. · Serve as the ...
-
Unicorn Advisor (HK) Limited Hong Kong, 香港 全职Develop and Implement Risk Management Strategies: Develop and implement risk management strategies, policies, and procedures to identify, assess, monitor, and mitigate risks associated with the company's business such as EQD, Delta one, PBS and Fixed income/equity trading and etc ...
-
Legal Counsel
3天前
Larson Maddox Hong Kong, 香港 全职Our client is a Commercial Bank in Hong Kong. · Job Title: Legal Counsel · Job Responsibilities: · Provide legal counsel and assistance to multiple business units within the financial institution and the group, ensuring adherence to legal requirements and minimizing legal risks. ...
-
Hang Seng Bank Limited Hong Kong, 香港 全职Job description · A Career with Hang Seng Bank · Hang Seng is committed to service excellence. Our people are our most important asset and play a vital role in our efforts to continually enhance our performance for customers and provide best-in-class products and services. We s ...
-
Taikang Asset Management (Hong Kong) Co. Ltd. Hong Kong, 香港 全职Taikang Asset Management (Hong Kong) Co. Ltd., (hereafter as "Taikang Asset (HK) or "the Company"), is a wholly-owned subsidiary of Taikang Asset Management Co., Ltd. (hereafter as "Taikang AMC") was incorporated in Hong Kong in 2007, now holding SFC licenses Type 1 (Dealing in S ...
-
Oliver James Associates Hong Kong, 香港 全职Responsibilities: · - Develop and implement cybersecurity strategies to protect the company's sensitive information and systems · - Lead a team of cybersecurity professionals to monitor, detect, and respond to security incidents · - Conduct regular security assessments and audits ...
-
AIA International Limited. Hong Kong, 香港 全职FIND YOUR 'BETTER' AT AIA · We don't simply believe in being 'The Best'. We believe in better - because there's no limit to how far 'better' can take us. · We believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the ...
-
Senior AML Manager
17小时前
Omni Group Asia Ltd. Hong Kong, 香港 全职Responsibilities · Develop and maintain a comprehensive AML/CFT program in accordance with applicable laws, regulations, and international standards. · Lead and manage a team of AML/CFT professionals, providing guidance, training, and support to ensure a strong culture of complia ...
-
Omni Group Asia Ltd. Hong Kong, 香港 全职Responsibilities · Responsible for regulatory compliance matters pertaining to insurance product offerings, sales, and distribution. · Develop and oversee robust compliance programs that effectively address market conduct, regulatory requirements, and internal policies. · Ensure ...
-
Venturenix Limited Hong Kong, 香港 全职Responsibilities: · oversee Application Security · Assess and evaluate information security products and solutions. · Advise and assess security controls for critical applications and IT infrastructure services. · Facilitate the deployment of strategic information security soluti ...
-
Aptitude Asia Hong Kong, 香港 全职Job Responsibilities: · Monitor and assess credit and portfolio performance for corporate loan in Hong Kong and China, ensuring compliance with regulatory requirements and internal policies. · Provide comprehensive support to the team in managing compliance, regulatory, and inter ...
Manager, Information Security and Compliance - Hong Kong, 香港 - Hong Kong Disneyland Resort
描述
Job Summary:
HKDL Information Security and Compliance Team is part of the line of business (LOB) Technology, Digital and Data (T&D). The team provides services to protect the value and use of Disney's information through collaboration, standardization and enforcement across HKDL T&D.
This role will be leading and driving the information security and compliance team in
Key Responsibilities
Leadership
Supervise and lead the information security and compliance team with a diverse of specialists and external vendors in
Partnership
Engage with different internal and external stakeholders to craft successful strategies, with lots of partnership opportunities from local, global and external
Result Driven
Act as the security architect and participate in architecture reviews to provide advisory and recommendation on information security related matters
Project management
Lead and drive cross-team information security programs
Business Savvy
Job Requirements
HKProfessional #LI-AI1