153 Cyber Risk Management jobs in Hong Kong

Join to apply for the APAC Risk Assessment Analyst role at Interactive Brokers

2 days ago Be among the first 25 applicants

Join to apply for the APAC Risk Assessment Analyst role at Interactive Brokers

Get AI-powered advice on this job and more exclusive features.

Company Overview
Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

Company Overview
Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.
IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.
Barron's has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.
Job Description
Interactive Brokers Hong Kong Limited ("IBHK") is expanding its Risk Assessment Team (RA) within the New Accounts Department at our Hong Kong office. We are searching for candidates with prior experience in the financial services industry, extraordinary attention to detail, and strong communication skills. The RA department liaises with Interactive Brokers' retail and professional clients.
The IBHK RA is accountable for providing high-quality reviews of Anti-Money Laundering (AML), Know-Your-Customer (KYC), sanctioning and Politically Exposed Persons (PEP) issues for retail customers, financial advisors, hedge fund operators and other broker-dealers. We aim to facilitate client onboarding by providing regulatory and compliance guidance while building and maintaining long-term client relationships as we expand our global service offerings.
Responsibilities

• Perform Enhanced Due Diligence (EDD) review on Individual and Corporate applications following policies and desktop procedures; identify and escalate potential AML risks
• Analyze and verify the source of funds/wealth information through the public domain or documentation
• Investigate and process alerts from multiple queues, sourcing information as appropriate from external sources and/or internal personnel to investigate and process alerts effectively
• Evaluate and resolve negative news and/or red flags or potential PEP matches escalated by other New Account Teams
• Run checks in the Offshore Leaks Database and conduct public domain searches for negative information related to applicants and associated entities
• Provide advice on issues and escalations to other New Accounts Teams to address difficult applications and independently recommend risk-based decisions to AML
• Responsible for timely escalations of suspected financial crime to AML
• Work closely with other New Account teams and AML to review and evaluate all financial crime risks
  

• Bachelor's degree
• Experience: 2-3 years in Client Service and/or Financial Service preferred. Fresh graduates with a relevant academic background who are motivated and demonstrate the right aptitude will also be considered
• Minimum of 2 years' experience and familiarity, preferably gained in brokerage or corporate banking environment, with onboarding or reviewing high-risk client relationships and carrying out EDD
• Excellent written and oral communication skills in English and Cantonese; Mandarin is advantageous
• Strong research, investigatory, and problem-solving skills
• Ability to make risk-based recommendations and articulate those persuasively to other departments
• Able to multitask various projects and firm initiatives
• Prior experience in a highly automated environment and/or a high degree of comfort with computers and technology
• Intermediate experience with MS Outlook, MS Word, and MS Excel
• Ability to work and thrive in a fast-paced, medium-sized office environment
  

• Ability to identify, analyze, and escalate complex issues
• Excellent troubleshooting and problem-resolution skills
• Taking personal responsibility for identifying client needs while providing a high-value experience
• Efficient, self-motivated and hard-working
• Being able to multitask in a pressured environment
  

• Competitive Salary, annual performance-based bonus and stock grant
• Excellent health and welfare benefits including medical, dental, specialist and inpatient
• Competitive package of Annual Leave
• Daily lunch ordered in-house with a fully stocked kitchen
• Modern offices with multi-monitor setups
• Great work-life balance
• Unique opportunity to gain exposure to global financial products, markets and clientele
• Opportunities for career progression and job scope expansion in a global company with a growing local presence
• Hybrid work arrangement role permitting

• Seniority level Entry level

• Employment type Full-time

• Job function Finance and Sales

Referrals increase your chances of interviewing at Interactive Brokers by 2x

Get notified about new Risk Analyst jobs in Kwun Tong District, Hong Kong SAR .

Kowloon City District, Hong Kong SAR 6 days ago

Tsuen Wan District, Hong Kong SAR 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

4 days ago Be among the first 25 applicants

We are seeking a diligent and proactive Information Security Officer to oversee and maintain the operational integrity, security, and compliance of our secured room facilities. This role is critical in supporting ongoing monitoring, access control, and administrative processes to ensure the highest standards of safety and regulatory compliance are met.

Your Role

• Conduct monthly inspection of access logs and CCTV reviews to ensure adherence to security protocols.
• Manage user access applications on a bi-weekly or ad hoc basis, in line with corporate access governance procedures.
• Complete and maintain a monthly secured room checklist, covering physical and operational controls.
• Perform monthly access inventory assessments, including user recertification activities. • Address administrative and technical issues such as network or hardware incidents on an ad hoc basis.
• Coordinate monitoring and inspection of the Foshan secured room (monthly and as needed).
• Perform daily monitoring of security guard performance and escalate concerns when appropriate.
• Assist in implementing security control enhancements such as mobile device management (MDM), two-factor authentication (2FA), and ID verification improvements

To Succeed in this Role

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field.
• Minimum of 3 years of experience in information security, risk management, or a related role.
• Knowledge of network security principles and incident response procedures.
• Excellent analytical skills with the ability to assess security risks and implement effective mitigation strategies.
• Strong problem-solving abilities to address technical and administrative issues as they arise.
• Effective verbal and written communication skills to convey security policies and procedures clearly to stakeholders.

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

As a 'Manager, Information Security,' your main responsibilities will include:

• Overseeing the implementation and maintenance of the bank's information security systems.
• Conducting regular audits and risk assessments to ensure adherence to security protocols.
• Developing and implementing information security policies and procedures.
• Training and mentoring staff on information security best practices.
• Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
• Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
• Leading and coordinating information security projects across departments.
• Managing incident responses and investigations into security breaches.
• Staying updated on the latest trends and developments in information security.
• Reporting on the status of information security to senior management.

A Successful 'Manager, Information Security' Should Have

• A degree in Computer Science, Information Security, or a related field.
• Proven experience in a managerial role within the field of information security.
• Familiarity with information security regulations and standards in the financial services industry.
• Exceptional leadership and communication skills.
• The ability to handle sensitive information with discretion and integrity.

• A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
• Standard benefits package.
• The chance to work in a fast-paced, technology-driven environment within the financial services industry.
• Opportunities for career progression and professional development.
• A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

• Mid-Senior level

• Full-time

• Information Technology and Engineering

• Financial Services, Accounting, and Banking

4 days ago Be among the first 25 applicants

We are seeking a diligent and proactive Information Security Officer to oversee and maintain the operational integrity, security, and compliance of our secured room facilities. This role is critical in supporting ongoing monitoring, access control, and administrative processes to ensure the highest standards of safety and regulatory compliance are met.

Your Role

• Conduct monthly inspection of access logs and CCTV reviews to ensure adherence to security protocols.
• Manage user access applications on a bi-weekly or ad hoc basis, in line with corporate access governance procedures.
• Complete and maintain a monthly secured room checklist, covering physical and operational controls.
• Perform monthly access inventory assessments, including user recertification activities. • Address administrative and technical issues such as network or hardware incidents on an ad hoc basis.
• Coordinate monitoring and inspection of the Foshan secured room (monthly and as needed).
• Perform daily monitoring of security guard performance and escalate concerns when appropriate.
• Assist in implementing security control enhancements such as mobile device management (MDM), two-factor authentication (2FA), and ID verification improvements

To Succeed in this Role

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field.
• Minimum of 3 years of experience in information security, risk management, or a related role.
• Knowledge of network security principles and incident response procedures.
• Excellent analytical skills with the ability to assess security risks and implement effective mitigation strategies.
• Strong problem-solving abilities to address technical and administrative issues as they arise.
• Effective verbal and written communication skills to convey security policies and procedures clearly to stakeholders.

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

As a 'Manager, Information Security,' your main responsibilities will include:

• Overseeing the implementation and maintenance of the bank's information security systems.
• Conducting regular audits and risk assessments to ensure adherence to security protocols.
• Developing and implementing information security policies and procedures.
• Training and mentoring staff on information security best practices.
• Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
• Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
• Leading and coordinating information security projects across departments.
• Managing incident responses and investigations into security breaches.
• Staying updated on the latest trends and developments in information security.
• Reporting on the status of information security to senior management.

A Successful 'Manager, Information Security' Should Have

• A degree in Computer Science, Information Security, or a related field.
• Proven experience in a managerial role within the field of information security.
• Familiarity with information security regulations and standards in the financial services industry.
• Exceptional leadership and communication skills.
• The ability to handle sensitive information with discretion and integrity.

• A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
• Standard benefits package.
• The chance to work in a fast-paced, technology-driven environment within the financial services industry.
• Opportunities for career progression and professional development.
• A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

• Mid-Senior level

• Full-time

• Information Technology and Engineering

• Financial Services, Accounting, and Banking

2 days ago Be among the first 25 applicants

We are seeking a highly capable and experienced professional with approximately 10 years of experience in cybersecurity governance, and IT audit and security assessment support. This role focuses on leading security assessments in collaboration with technical teams, reviewing and translating technical findings into clear and impactful reports for clients, regulators, and senior management. The ideal candidate will possess strong analytical skills, excellent communication abilities, and a solid understanding of security controls across various technology domains.

Your Role

• Lead and coordinate security assessments across infrastructure, applications, and cloud environments, working closely with technical SMEs.
• Interface with technical teams to understand control implementation and translate findings into governance insights.
• Prepare high-quality security reports and presentations tailored for client and senior stakeholders.
• Support responses to client and regulatory security inquiries, ensuring accuracy, clarity, and timely delivery.
• Support the development of security reporting and risk metrics
• Contribute to the development and refinement of security policies, standards, and procedures.
• Support audit and assessment activities, including evidence collection and coordination with internal teams.
• Promote security awareness and contribute to training initiatives across the organization.

To Succeed in this Role

• Minimum 10 years of experience in cybersecurity governance, technology risk, or audit-related roles.
• Strong understanding of security controls across infrastructure, application, and cloud domains.
• Proven ability to work with technical teams and translate technical content into business-friendly reporting.
• Experience in preparing client-facing documentation and presentations.
• Excellent written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST, CIS).
• Relevant certifications such as CISM, CRISC, ISO 27001 Lead Implementer, or equivalent are preferred.

Preferred Attributes

• Experience in regulated industries such as finance, healthcare, or insurance.
• Strong stakeholder engagement and coordination skills.
• Detail-oriented with a proactive and structured approach to governance.
• Familiarity with GRC

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Information Security Specialist jobs in Hong Kong, Hong Kong SAR .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

5 days ago Be among the first 25 applicants

Join our fast-paced team as a Senior Information Security Specialist, contributing to global security operations across various entities at the group level. In this role, you'll utilize advanced tools for threat detection, incident response, and proactive security measures, ensuring robust protection against emerging cyber threats.

Responsibilities

• Utilize cybersecurity tools like SIEM, EDR, and SOAR for effective threat management.
• Stay updated on emerging cyber threats, vulnerabilities, and mitigation techniques.
• Lead incident response, management, and investigations.
• Conduct purple team exercises and threat hunting to identify risks.
• Analyze threat actors and their tactics through detailed research.
• Perform malware analysis to prevent future attacks.
• Oversee actionable Threat Intelligence (TI) collection and execution.
• Propose and implement security initiatives to combat emerging threats.
• Develop and update playbooks and documentation for security processes.
• Provide expertise in creating and maintaining security frameworks and policies.
• Evaluate new software or products for security projects.
• Promote security awareness and conduct role-based training.
• Communicate cybersecurity risks effectively to stakeholders.

Requirements

• Must have 5-8 years of experience in Information Security with hands-on expertise in Security Engineering, Operations, Cyber Threat Intelligence, Digital Forensics, Incident Response, Endpoint, or Cloud Security.
• Must be skilled with security event tools and incident response within a blue team context.
• Nice to have: Experience in Red Teaming and Penetration Testing (PenTest), as well as in-house security operations.
• Proficient with SIEM, EDR, SOAR, Vulnerability Management, and Open-Source Tools.
• Familiar with cloud environments such as AWS, Azure, and GCP.
• Knowledge of malware reverse-engineering techniques.
• Proficient in one coding language (Python, Java, etc.).
• Strong understanding of the MITRE ATT&CK framework.
• Professional English proficiency; Chinese is a plus.

About OSL

As a subsidiary of the publicly listed OSL Group (HKEX: 863.HK), OSL Digital Securities is Hong Kong’s first and most established SFC-licensed and insured digital asset platform. Operating since 2018, the platform provides institutional-grade digital asset services to corporations, financial institutions, professional and retail investors.

OSL Core Values

Be customer-centered

Be a high-performing team

Be relentlessly innovative

Be an owner

Be geared toward action

Be compliant

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Finance, Accounting/Auditing, and Information Technology
• Industries Securities and Commodity Exchanges and Financial Services

Referrals increase your chances of interviewing at OSL by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Lead, Information Security Assurance role at AXA Hong Kong and Macau

2 days ago Be among the first 25 applicants

Join to apply for the Lead, Information Security Assurance role at AXA Hong Kong and Macau

• Provide professional security advisory and recommendations on solutions architecture, business project requirements, and security related enquiry.
• Develop and maintain security policies and process documentation. Ensure alignment with Corporate Security standards and controls.
• Conduct security risk assessment on technology solutions and/or technical controls to identify potential security threats and vulnerabilities and develop strategies to mitigate risks. Maintain security risk register, and communicate identified risks and impacts to stakeholders.
• Conduct security assessment and ISO audit and managing the exercise from end-to-end.
• Support external security audits and compliance assessments, devising mitigation measures to effectively address findings.
• Oversee security incident management and support the first line to ensure timely detection, response, and resolution of security incidents.
• Periodically review and update security policies and operational processes for security control enhancement.
• Prepare management reports for the Chief Security Officer and the Management team.
  
  

• Provide professional security advisory and recommendations on solutions architecture, business project requirements, and security related enquiry.
• Develop and maintain security policies and process documentation. Ensure alignment with Corporate Security standards and controls.
• Conduct security risk assessment on technology solutions and/or technical controls to identify potential security threats and vulnerabilities and develop strategies to mitigate risks. Maintain security risk register, and communicate identified risks and impacts to stakeholders.
• Conduct security assessment and ISO audit and managing the exercise from end-to-end.
• Support external security audits and compliance assessments, devising mitigation measures to effectively address findings.
• Oversee security incident management and support the first line to ensure timely detection, response, and resolution of security incidents.
• Periodically review and update security policies and operational processes for security control enhancement.
• Prepare management reports for the Chief Security Officer and the Management team.
  
  

• 5+ years of experience in information security, security risk, or a related area.
• Degree in Information Security, Computer Science, Information Management Systems, or a related field.
• Demonstrated track record in leading and implementing successful information security initiatives and programs.
• Ability to apply analytical rigor to understand complex business scenarios, with strong problem-solving skills and the ability to work independently.
• Excellent presentation and communication skills, with the ability to convey complex security concepts in clear, business-intelligible language.
• Experience working in a multinational organization is advantageous.
• Fluent in English (verbal and written).
• Relevant certifications (e.g., CISSP, CISA, OSCP, CEH, ISO 27001, NIST, or equivalent) are a plus.
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries Insurance

Referrals increase your chances of interviewing at AXA Hong Kong and Macau by 2x

Get notified about new Information Security Specialist jobs in Hong Kong, Hong Kong SAR .

Sha Tin District, Hong Kong SAR 1 day ago

Sha Tin District, Hong Kong SAR 2 weeks ago

Sha Tin District, Hong Kong SAR 1 day ago

Sha Tin District, Hong Kong SAR 2 days ago

Shenzhen, Guangdong, China CN¥45,000.00-CN¥65,000.00 2 years ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Head of Information Security role at Michael Page .

1 day ago Be among the first 25 applicants.

Our client is a well-established insurance firm, recognized as a large organization in the industry. Operating in a competitive and fast-paced environment, they are heavily focused on technological innovation and security. Their commitment to maintaining the highest standards of information security is one of their top priorities.

As a Head of Information Security , your main responsibilities will include:

1. Defining and implementing the company's information security strategy and roadmap.
2. Developing and maintaining the ISMS based on ISO 27001.
3. Conducting regular information security risk assessments.
4. Ensuring compliance with regulatory requirements related to information security.
5. Managing the information security incident response process.
6. Providing information security training and awareness to all staff.
7. Working closely with the IT department to ensure the security of the IT infrastructure.
8. Reporting to management on information security status and initiatives.

A Successful 'Head Of Information Security' Should Have

• A degree in Information Technology, Computer Science, or a related field.
• Professional certifications such as CISSP, CISM, or CISA.
• Proven experience in developing and managing ISMS based on ISO 27001.
• Strong knowledge of information security principles and practices.
• Ability to conduct information security risk assessments and audits.
• Experience in managing information security incidents.
• Strong communication and leadership skills.

• A competitive salary range of around HKD 1,080,000 to HKD 1,200,000.
• Standard benefits package including health insurance and retirement plans.
• Opportunity to work in a technologically advanced environment.
• A supportive and collaborative work culture.

We are looking for an ambitious and dedicated professional to join our team in this critical role. If you have the necessary skills and experience, we would love to hear from you. Apply today to secure your future in a highly rewarding career in the insurance industry.

Contact: Alexis Wee

Quote job ref: JN-052025-6742521

• Director

• Full-time

• Information Technology and Engineering

• Insurance, Financial Services, and Capital Markets