職位描述
ISO27001CISSPCISMCISAWindowsUnix網(wǎng)絡/信息安全
Job Responsibilities
· According to Hong Kong & Mainland China regulatory requirements, analyze the current situation of cyber security in the bank industry, review the existing monitor mechanisms of banks on cyber security threats and propose security reinforcement and prevention recommendations
· Review the existing monitor strategies, management processes, and technical standards of banks on cyber security threats, participate in infrastructure vulnerability and penetration testing, conduct cyber security assessments, and carry out cyber incident investigation and analysis
· Perform the technology risk management process which identifies, measures, monitors and controls technology-related risks of existing/new systems, processes and initiatives
· Ensure awareness of, and compliance with, the Bank’s IT control policies, and to provide report with recommendations, if any, after investigation of any technology-related incidents
·Implement risk issue management procedures for assuring the required policies and guidelines are enforced in daily operation
·Recommend and implement remedial actions and control measures
·Plan and work with the technology team and any concerning parties on technology related initiatives
·Perform review and/or security assessment on the related initiatives
Requirements
· University graduate with major in Computer Science, IT or related disciplines, with professional qualification such as CISSP, CISM, CISA, CREST CPSA / CRT, CEH is preferred
·At least 3 to 5 years of relevant work experience in IT / Cyber Security, e-Banking security, BCP/DR and/or relevant risk control area
·Solid experience in handling technical information / cyber security issues and good understanding of business processes and related regulations including HKMA TM-G-1, TM-G-2, SA-2, C-RAF, STDB, SFC, PDPO, etc.
· Proven experience in writing policies, procedures and reports is a must
· Familiar with infrastructure platforms, e.g. Data Centre Operations, Network Services (Voice / Data / Routing & Switching, security), Messaging, Desktop technology, Distributed Servers (UNIX and Windows), Mainframe etc.
· Knowledge / experience on ISO27001 is an advantage
· Work independently with good communication and interpersonal skills
Conversant with MS Word, Excel & Chinese character input
· Good command of written & spoken English and Chinese including Putonghua
· According to Hong Kong & Mainland China regulatory requirements, analyze the current situation of cyber security in the bank industry, review the existing monitor mechanisms of banks on cyber security threats and propose security reinforcement and prevention recommendations
· Review the existing monitor strategies, management processes, and technical standards of banks on cyber security threats, participate in infrastructure vulnerability and penetration testing, conduct cyber security assessments, and carry out cyber incident investigation and analysis
· Perform the technology risk management process which identifies, measures, monitors and controls technology-related risks of existing/new systems, processes and initiatives
· Ensure awareness of, and compliance with, the Bank’s IT control policies, and to provide report with recommendations, if any, after investigation of any technology-related incidents
·Implement risk issue management procedures for assuring the required policies and guidelines are enforced in daily operation
·Recommend and implement remedial actions and control measures
·Plan and work with the technology team and any concerning parties on technology related initiatives
·Perform review and/or security assessment on the related initiatives
Requirements
· University graduate with major in Computer Science, IT or related disciplines, with professional qualification such as CISSP, CISM, CISA, CREST CPSA / CRT, CEH is preferred
·At least 3 to 5 years of relevant work experience in IT / Cyber Security, e-Banking security, BCP/DR and/or relevant risk control area
·Solid experience in handling technical information / cyber security issues and good understanding of business processes and related regulations including HKMA TM-G-1, TM-G-2, SA-2, C-RAF, STDB, SFC, PDPO, etc.
· Proven experience in writing policies, procedures and reports is a must
· Familiar with infrastructure platforms, e.g. Data Centre Operations, Network Services (Voice / Data / Routing & Switching, security), Messaging, Desktop technology, Distributed Servers (UNIX and Windows), Mainframe etc.
· Knowledge / experience on ISO27001 is an advantage
· Work independently with good communication and interpersonal skills
Conversant with MS Word, Excel & Chinese character input
· Good command of written & spoken English and Chinese including Putonghua
工作地點
香港紅磡德豐街18號
相似職位
查看更多相似職位熱門公司推薦
- 霸王茶姬招聘
- 肯德基招聘
- 順豐招聘
- 美團招聘
- 京東招聘
- 餓了么招聘
- 比亞迪招聘
- 中國一汽招聘
- 北京汽車招聘
- 蔚來招聘
- 東風汽車招聘
- 長城汽車招聘
- 奇瑞汽車招聘
- 理想汽車招聘
- 長鑫存儲招聘
- 天江藥業(yè)招聘
- 藍月亮招聘
- 安踏招聘
- TCL招聘
- 海信招聘
- 聯(lián)想招聘
- 海康威視招聘
- 寧德時代招聘
- 中興招聘
- 新松招聘
- 京東方招聘
- 申通招聘
- 圓通招聘
- 中通招聘
- 百世物流招聘
- 德邦物流招聘
- 麥當勞招聘
- 星巴克招聘
- 海底撈招聘
- 蜜雪冰城招聘
- 瑞幸招聘
- 雀巢招聘
- 騰訊招聘
- 百度招聘
- 快手招聘
- 字節(jié)跳動招聘
- 新華網(wǎng)招聘
- 小米招聘
- 招商銀行招聘
- 中信銀行招聘
- 北京銀行招聘
- 興業(yè)銀行招聘
- 交通銀行招聘
- 建發(fā)集團招聘
- 中國移動招聘
- 中國聯(lián)通招聘
- 中國電信招聘
- 中糧集團招聘
- 國藥控股招聘
- 中廣核招聘
- 中國船舶招聘
- 強生中國招聘
- 匯豐中國招聘
- 宜家招聘
- 立邦中國招聘
- 伊利招聘
- 青島啤酒招聘
- 京港地鐵招聘
- 寶馬招聘
- 小鵬汽車招聘
- 華為招聘
- 特斯拉招聘
- 吉利招聘
- 奔馳招聘
- 海爾招聘
- 美的招聘
- 京東方招聘
- 施耐德電氣招聘
- 德邦物流招聘
