- Hong Kong, Hong Kong
- Permanent contract
- IT (Information Technology)
- Conduct and manage cyber risk assessments, audits, and regular monitoring to proactively identify and mitigate risks.
- Drive the company-wide cybersecurity awareness program, providing training and resources to ensure staff remains informed about current threats and best practices.
- Ensure adherence to all relevant regulatory compliance standards, including liaising with legal and compliance teams to stay updated on emerging legislations.
- Maintain close interaction with regulators for all aspects related to Information systems and Technology.
- Lead internal response on Cybersecurity towards regulatory requests, RISQ / audit /inspection or regular submissions ensuring timely and accurate reporting and communication.
- Monitor and ensure compliance (coordinate gap analysis and follow-up remediation plans) against local regulations, global policies, and standards related to Cybersecurity.
- Oversee the cyber risk governance over Asian countries, being the Regional point of contact for cyber security correspondents in the various countries.
- Coordinate across various departments to integrate cybersecurity best practices and compliance into broader corporate governance.
- Regularly report to senior management on the status of cybersecurity governance, risk management, and compliance activities.
- Evaluate and manage regional security exceptions in alignment with global standards
- Bachelor's degree in information technology or equivalent
- Professional qualification in information security management such as CISSP, CISM, CISA
- Minimum of 10 years of experience in cybersecurity with a focus on governance, risk management, and compliance, preferably with multi-country responsibilities in the Asia Pacific region.
- Extensive knowledge of the regulatory environment and data protection laws within the Asia Pacific region.
- Proven ability to interact with regulators and other external parties on information securty matters.
- Proven track record of developing and executing successful cybersecurity awareness programs.
- Experience in conducting and managing risk assessments, interpreting results, and developing strategies to mitigate identified risks.
- Strong leadership skills with experience with cross-functional global teams and working with senior stakeholders
- Excellent communication and interpersonal skills, with an ability to translate complex technical information for a non-technical audience.
- Fluent in English with proficiency in other Asian languages being highly desirable.
- Client oriented mindset, results driven, proactive and quick to react to requests
- Innovative and bringing new ideas to improve processes.
- Client - Risk: I strive to satisfy clients/internal partners while taking into account risks for the company
- Commitment - Inspiration: I communicate a clear vision and strategy
- Responsibility - Courage: I express my convictions and make decisions with courage
- Responsibility - Risk awareness: I am constantly on the lookout for risks
- Commitment - Exemplarity: I embody the Group's values
- Innovation - Simplification: I make things & ideas simple
Regional Cyber Governance Risk and Compliance OfficerPermanent contractHong Kong, Hong Kong - Société Générale Assurances
描述
Regional Cyber Governance Risk and Compliance Officer
Permanent contract|Hong Kong|IT (Information Technology)Regional Cyber Governance Risk and Compliance Officer
Responsibilities
The Regional Cyber Governance, Risk, and Compliance (GRC) Officer is responsible for overseeing the cybersecurity framework across the Asia Pacific region, with a strong emphasis on regulatory compliance in APAC countries. This role holds a key responsibility in assessing, overseeing, and advising on cyber regulation compliance. The Regional Cyber GRC Officer leads the response to regulatory inquiries, manages cybersecurity awareness initiatives, and supervises overall cyber governance across various Asian markets.
Profile required
Academic Background and Certifications, Experience
Operational Skills
Behavioral Skills