Job Description
We are currently seeking a Director of Information Security to join our team in the Information Technology Division at the Corporate Office in Hong Kong.
Reporting to the Chief Information Officer, the Director of Information Security is responsible for all matters related to information security, data privacy and asset protection for the organization. This includes the development and implementation of a comprehensive information security and data protection program, technology refresh for information security controls, user education and training, compliance and enforcement, incident response and investigation, risk assessment, and contibution to disaster recovery planning.
Key Responsibilities
Development and implementation of a comprehensive company-wide information security and privacy program & standard procedures for information security operations
Review and give recommendation of the configuration setup for security appliances, software and equipment
Lead and manage risk assessment program targeting information security and privacy matters, recommend methods for vulnerability detection, prevention and remediation
Conduct periodic security audit review of network infrastructure and system activities
Manage the group-wide penetration test and PCI scanning program and security incident responses & reporting program
Work closely with data center operations, application team and service providers to ensure a secure, stable and continuous operation of the group's mission critical systems
Experiences and skills required
Minimum 10 years of experience in information security including the following key areas:
Technical evaluation of platform, products and tools related to information security and asset protection
Design and control of the configuration of security devices and software across multiple diverse geographic locations and numerous entry points to the envionment
Develop and administrate a comprehensive information security program, including writing policy and standards and training / education
Coordination of audit activities, vulnerability scanning, penetration testing, and similar
Compliance and incident handling / response including engagement with law enforcement and legal terms as necessary and approriate
Must demonstrate detailed understanding of system and software architecture and the current threat landscape surrounding each, with knowledge of the latest countermeasures or strategies for mitigating those theats
Must have practical, first-hand experience in the realms of PCI, post-attack forensic analysis, proactive controls and detection mechanisms, threat assessment and mitigation, and breach remediation
University degree, preferably in science, technology, engineering, or mathematics discipline
CISSP, CISA or GIAC-issued certification & ISO 27k experience is desirable
LinkWithin
Popular Jobs
-
Job Description Direct a team to generate and manage new IT demands proactively through close relationship with the business. Strategic des...
-
Job description • Establish and maintain effective working relations with all Asia regional capital markets and investment banking (“CM/I...
-
Job description Basic Function: To oversee Morgan Stanley’s engineering maintenance and utilities services in Hong Kong and Australia. ...
-
Job Description To render comprehensive financial advice to clients that have been assigned to the Investment Consultant by the RM Represe...
-
Job description The main purpose of this role is to provide independent assurance regarding the effectiveness of franchise governance, ri...
-
Job Description The APAC director will be responsible for the development, refinement and implementation of the CFA Institute Professional ...
-
Job description POSITION SUMMARY: This is a key Marketing role to create and sustain a dynamic, consistent, multi-channel experience f...
-
Job description If you’re looking for a career where you will be respected as an individual and valued for the contributions you make, jo...
-
Job description Job/Group Overview: The role is for a business auditor covering Global Markets, reporting to the AEJ Regional Portfolio ...
-
Job Description Provides direction and specialist knowledge in applying the technology/application to client business. Facilitation of cust...
Popular This Week
Hong Kong
Standard Chartered Bank
HSBC
Morgan Stanley
CFA Institute
J.P. Morgan
Apple
Facebook
Bank of America
Paypal
Citi
Google
Microsoft
adidas
Credit Suisse
JP Morgan
Shangri-La Hotels and Resorts
adidas Group
BT Global Services
Cognizant Technology Solutions
Disneyland
Dow Jones
Fossil Group
HP
JPMorgan Chase
LEGO Group
Leo Burnett
Marriott
Montblanc
Nielsen
Oracle
Schneider Electric
Starbucks
Thomson Reuters
Turner Broadcasting System
Verizon
WOOX Innovations
ASSA ABLOY
Adobe
American Express
Artyzen Hospitality Group
AsiaInspection
Aspire
Bank of America Merrill Lynch
Banking Bank of America
BlackRock
Bloomberg LP
CA Technologies
CBRE Asia Pacific
CNN
Calvin Klein
Capgemini
Causeway Bay
Christie's
Computime
Corvil
DBS Bank
DHL
DMS Offshore Investment Services
Ericsson
Flextronics
Gammon Construction
Gap
Gartner Research Gartner
Hitachi Data Systems
Hong Kong Disneyland
Hongkong
Hourglass Cosmetics
Hudson
Intel
Intel Corporation
JP Morgan Chase
Johnson Electric
Kowloon Bay
LeTV
Lenovo
Luxottica Group
MSCI Inc.
Maclaren
Manulife Financial
Markit
Mercer
Metrojet
MoneyGram International
Moody's Corporation
NVIDIA
Nomura
Ogilvy & Mather Advertising
Panasonic Avionics Corporation
Philips Electronics
Prudential
Prudential Hong Kong
Puma
Quary Bay
RBC Investor & Treasury Services
S&P Ratings Services
Salesforce
Shangri-La
Shenzhen
Singapore
Sony Pictures Entertainment
SunGard
Symantec
TMF Group
The Barrel Shack
The Coca-Cola Company
The Economist Intelligence Unit Hong Kong
The Red Flag Group
The Ritz-Carlton Hotel Company
Visa
Waggener Edstrom
Wanchai
Yahoo!