About the Role
My client, a reputable bank with strong presence in the Asia region, is seeking an experienced professional to join them. This role focuses on technology risk and cyber resilience within a fast-growing banking environment. You will play a key part in shaping risk frameworks, ensuring compliance, and driving initiatives that strengthen our technology risk posture.
Key Responsibilities
- Develop and maintain policies and procedures covering technology risk, information security, cyber resilience, and third-party risk.
- Conduct risk assessments to identify vulnerabilities and potential threats.
- Implement risk mitigation strategies and monitor effectiveness.
- Ensure compliance with regulatory requirements and industry best practices.
- Advise stakeholders on technology risk management and compliance matters.
- Lead initiatives to enhance cyber defense and resilience.
- Explore emerging technologies and assess associated risks.
Qualifications
- Degree in Information Technology or related discipline; postgraduate qualifications in risk management or audit are an advantage.
- Professional certifications such as CISM, CISSP, CISA (or equivalent) preferred; ECF certification is a plus.
- 7+ years of experience in technology risk, with at least 3 years in managerial role with financial services institute.
- Strong knowledge of HKMA regulations (e.g., C-RAF, iCAST) and other IT industry security practices.
- Excellent command of English and Chinese; fluency in Cantonese and Putonghua.
- Candidates with less experience may be considered for Manager level.
