Technology Risk Management - 2nd Line, Insurance

Location Hong Kong
Job-type Full Time
Salary Negotiable
Contact Mannie Chiu
Email email Mannie
Reference 716023_1657073106


  • Define and review cyber-threat framework and instil risk control mechanism
  • Perform Security Risk Assessment and Audit
  • Perform Privacy Impact Assessment, Compliance Audit and Penetration Testing
  • Develop and maintain corporate-wide technology risk management and cyber resilience policy and process in compliance with the regulator's requirements
  • Coordinate to evaluate emerging cyber threat scenario for continuous improvement on cyber security response preparation for Business Continuity Management (BCM)
  • Promote security awareness and ensure compliance with applicable security standards
  • Collect data on cybersecurity related risk, attacks, breaches and incidents, including external data and statistics as appropriate.
  • Play a governance role on the IT outsourcing service provider. Perform regular security assessment on IT outsourcing service provider.


  • Bachelor degree or above in Information Systems or Computer Science
  • At least 5-year working experience in IT Risk/ security across Financial Services
  • Good understanding of technology requirements from Asia regulators such as MAS, HKMA, RBI, and CBRC.
  • Related certificates such as CISM, CISA, CEH, CISSP, CRISC, etc. holder is preferred
  • Candidates with less experience might be considered as Manager
  • Good command in spoken and written in Cantonese and English

Interested individuals can click apply now and send updated resume (in WORD format) to Mannie CHIU for further information.