Key Responsibilities - Conduct risk assessments and control reviews across IT infrastructure, applications, and cybersecurity domains
- Develop and maintain technology risk management frameworks, policies, and procedures
- Monitor key risk indicators and emerging threats, and escalate issues as appropriate
- Collaborate with IT, business units, and second-line functions to implement effective risk mitigation strategies
- Support regulatory engagements and ensure compliance with relevant guidelines (e.g., HKMA TM-G-1, GL-97)
- Provide advisory support on technology initiatives, including cloud adoption, digital transformation, and third-party risk
- Prepare risk reports and dashboards for senior management and governance committees
- Promote awareness of technology risk and foster a strong risk culture across the organisation
Requirements - Bachelor's degree in Information Technology, Risk Management, or related discipline
- Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly preferred.
- Solid understanding of IT controls, cybersecurity principles, and regulatory expectations in the banking sector
- Strong analytical, communication, and stakeholder engagement skills
- Fluent in English and Cantonese, Mandarin is an advantage
What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or contact Christine Lau at +852 6228 4705 (WhatsApp)