Great opportunity with a well established insurance firm in Hong Kong, working in conjunction with other professional colleagues and specialists in cyber security.
- Develop and manage the information security governance framework and risk portfolio, which follows the companies IT policies, standards and guidelines;
- Manage regular cyber security assessments including vulnerability scanning, independent testing and validation of IT infrastructure and applications to ensure that security standards are met and plans are achieved;
- Drive the deployment of strategic information security solutions to IT infrastructure and systems.
- Conduct business impact analysis and continuity risk assessments of critical assets;
- Oversee the design, implementation, and communication of technology disaster recovery plans and processes;
- Evaluate and recommend technology recovery strategies and options, and help implement solutions
- Oversee the periodic drill exercises of technology disaster recovery plans to validate adequacy and readiness of plans and prepare reports for management.
- Lead ad-hoc cross-functional teams on special projects or strategic initiatives relating to IS
- Develop plans to uplift the technology risk standard and resiliency across the organisation
- Communicate with group offices, business partners, corporate clients, IT vendors and external parties on IT security matters, as and when needed.