Technology Risk Manager

Responsibbilities:

• Build a all-rounded Cyber Security mechanism for the company
• Maintain a good relationship with business units in order to deliver a bespoke cyber security solution
• Work with IT/ Cyber Security vendors on acquiring the most appropriate solutions that fits the mechanism
• Conduct cyber security solutions technical assessment and provide an assessment report for management
• Assist the Head of Technology Risk in designing and implementing a proper technology risk governance for the group
• Review group IT regulatory on regular basis to keep the governance posture up to date
• Provide cyber security support services to various departments and businesses, such as technology risk assessment, mitigation suggestion and roadmap

Requirements:

• Over 4 years’ experience in IT security and risk management area
• Solid experience in cyber security controls and incident handling
• Good knowledge in Companying environment
• Strong knowledge of Companying regulations / guidelines relating to cyber security and technology risk management
• Experienced in web and mobile application development/penetration testing preferred
• Experienced in performing security risk assessment and audits based on industry standards
• Familiar with various cybersecurity related framework such as ISO 27001 ISMS, CIS CSC (CIS Critical Security Controls) and NIST Cyber Security Framework
• Strong technical or security skills related to IT applications and infrastructure in financial institution
• Strong self-motivation, with good leadership, communication, interpersonal and analytical skills
• Great sense of ownership and servicing mindset