Cyber Security Director

Full Time | Hong Kong

Responsibilities:

  • Understanding well in Cybersecurity area from regulatory perspective of virtual asset industry and communicating with SFC directly to tackle with regulator’s requirements
  • Working with Corporate IT team closely to support Cybersecurity matters and tackling with regulatory requirements with main regulators (e.g. SFC in HK, MAS in SG or others in future) timely
  • Implementing information security controls and ensure the efficiency of the controls in HK office
  • Design, implement and carry out comprehensive preventive plans, agile counter-attack plans and quick remediation measures of any cyber-security related incidents
  • Working as key contact person and coordinator between Shanghai cybersecurity team and different stakeholders in the HK office
  • Develop security awareness program and promote security culture across the organization in partnership with internal stakeholders

Requirements:

  • At least a university degree with major in computer science, computer engineering, electrical and/or electronic engineering, information technology, information system, mathematics, or similar streams
  • Minimum 12 years of experience in cybersecurity and/or information security field(s)
  • Solid knowledge in information security principles and more importantly on real life practices
  • Direct experience of facing regulator(s) (e.g. SFC, HKMA, HK Police Force, MAS, etc.)
  • Proven hands-on expertise in the following areas:
    • Cyber-attack incident handling
    • Prevention of cyberattack, data breach and data loss
    • Cybersecurity governance and policymaking
    • Security compliance
    • Security assessment and assurance
    • Security risk management
    • IT Infrastructure and application security
  • Management skills and capability of building a team from scratch
  • Industry recognized training and certification – Having CISSP and CISA is a must. Others (e.g. CRISC, CISM, CGEIT, CCSP, CCSA, CIA, etc.) would be advantageous
  • Experienced in certification and/or cybersecurity frameworks of ISO27001, SOC 2, NIST is a plus
  • Excellent command in both spoken and written English and Chinese (Cantonese and Mandarin)

Please fill all details below and submit your resume