209 Information Security Manager jobs in Hong Kong

Information Security Manager

Michael Page

Posted 7 days ago

Job Viewed

Tap Again To Close

Job Description

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

About Our Client

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

Job Description

As a 'Manager, Information Security,' your main responsibilities will include:

  • Overseeing the implementation and maintenance of the bank's information security systems.
  • Conducting regular audits and risk assessments to ensure adherence to security protocols.
  • Developing and implementing information security policies and procedures.
  • Training and mentoring staff on information security best practices.
  • Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
  • Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
  • Leading and coordinating information security projects across departments.
  • Managing incident responses and investigations into security breaches.
  • Staying updated on the latest trends and developments in information security.
  • Reporting on the status of information security to senior management.
The Successful Applicant

A Successful 'Manager, Information Security' Should Have

  • A degree in Computer Science, Information Security, or a related field.
  • Proven experience in a managerial role within the field of information security.
  • Familiarity with information security regulations and standards in the financial services industry.
  • Exceptional leadership and communication skills.
  • The ability to handle sensitive information with discretion and integrity.
What's on Offer
  • A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
  • Standard benefits package.
  • The chance to work in a fast-paced, technology-driven environment within the financial services industry.
  • Opportunities for career progression and professional development.
  • A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

Seniority level
  • Mid-Senior level
Employment type
  • Full-time
Job function
  • Information Technology and Engineering
Industries
  • Financial Services, Accounting, and Banking
#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Information Security Manager

Bank of Communications Co., Ltd. London Branch

Posted 14 days ago

Job Viewed

Tap Again To Close

Job Description

Job Responsibilities
  1. Develop and implement IT security control reviews and settings for banking systems to ensure appropriate controls are in place and in adherence to IT security policy and standards.
  2. Evaluate, identify and mitigate new IT security threats, and enhance the bank's IT security initiatives.
  3. Manage the implementation of IT security policies in IT infrastructure and systems, and assist in preparing information security audits.
  4. Review the security tasks related to IT audits.
Minimum Requirements
  1. Degree Holder in IT or related disciplines or equivalent qualifications at HKQF level 5, with a minimum of 8 years’ working experience on system and/or network configuration.
  2. Holder of CISSP / CISM / CRISC / CISA certification with CCNP / CCDP is preferred.
  3. Hands-on experience in vulnerability scanning, patch, and PID management is an asset.
  4. Strong understanding of Information Technology Risk Management and information security practices.
  5. Solid knowledge in firewall, router, switch, anti-spam, intrusion prevention/detection, VPN, Privilege ID, and access control systems, Microsoft Windows and Linux systems.
  6. ECF achievement on Cybersecurity is a definite advantage.

Candidate with less experience will be considered as Deputy Information Security Manager.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Information Security Manager

Hong Kong, Hong Kong Bank of Communications Co., Ltd. London Branch

Posted 12 days ago

Job Viewed

Tap Again To Close

Job Description

Job Responsibilities
  • Develop and implement IT security control reviews and settings for banking systems to ensure appropriate controls are in place and in adherence to IT security policy and standards.
  • Evaluate, identify and mitigate new IT security threats, and enhance the bank's IT security initiatives.
  • Manage the implementation of IT security policies in IT infrastructure and systems, and assist in preparing information security audits.
  • Review the security tasks related to IT audits.
Minimum Requirements
  • Degree Holder in IT or related disciplines or equivalent qualifications at HKQF level 5, with a minimum of 8 years’ working experience on system and/or network configuration.
  • Holder of CISSP / CISM / CRISC / CISA certification with CCNP / CCDP is preferred.
  • Hands-on experience in vulnerability scanning, patch, and PID management is an asset.
  • Strong understanding of Information Technology Risk Management and information security practices.
  • Solid knowledge in firewall, router, switch, anti-spam, intrusion prevention/detection, VPN, Privilege ID, and access control systems, Microsoft Windows and Linux systems.
  • ECF achievement on Cybersecurity is a definite advantage.

Candidate with less experience will be considered as Deputy Information Security Manager.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Information Security Manager

Hong Kong, Hong Kong Michael Page

Posted 16 days ago

Job Viewed

Tap Again To Close

Job Description

Join to apply for the Information Security Manager role at Michael Page .

1 day ago Be among the first 25 applicants.

About Our Client

Our client is a well-established organization within the financial services sector. With a large workforce and a solid market presence in Hong Kong, they are committed to maintaining high standards in technology and information security.

Job Description

As a 'Manager, Information Security,' your main responsibilities will include:

  • Overseeing the implementation and maintenance of the bank's information security systems.
  • Conducting regular audits and risk assessments to ensure adherence to security protocols.
  • Developing and implementing information security policies and procedures.
  • Training and mentoring staff on information security best practices.
  • Conducting cybersecurity assessments, including penetration testing and infrastructure/web application reviews.
  • Managing and maintaining security systems such as firewalls, NAC, IPS, and SIEM.
  • Leading and coordinating information security projects across departments.
  • Managing incident responses and investigations into security breaches.
  • Staying updated on the latest trends and developments in information security.
  • Reporting on the status of information security to senior management.
The Successful Applicant

A Successful 'Manager, Information Security' Should Have

  • A degree in Computer Science, Information Security, or a related field.
  • Proven experience in a managerial role within the field of information security.
  • Familiarity with information security regulations and standards in the financial services industry.
  • Exceptional leadership and communication skills.
  • The ability to handle sensitive information with discretion and integrity.
What's on Offer
  • A competitive salary in the range of HKD 648,000 - HKD 792,000 per annum.
  • Standard benefits package.
  • The chance to work in a fast-paced, technology-driven environment within the financial services industry.
  • Opportunities for career progression and professional development.
  • A supportive and collaborative company culture.

We encourage all candidates who believe they can fulfill these responsibilities and possess the necessary qualifications and skills to apply. This is a fantastic opportunity to join a leading financial organization in Hong Kong and make a significant impact in the field of Information Security.

Contact: Alexis Wee

Quote job ref: JN-052025-6742617

Seniority level
  • Mid-Senior level
Employment type
  • Full-time
Job function
  • Information Technology and Engineering
Industries
  • Financial Services, Accounting, and Banking
#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Global Information Security Manager

Kerry Consulting

Posted 1 day ago

Job Viewed

Tap Again To Close

Job Description

Direct message the job poster from Kerry Consulting

We are partnering with a Global MNC in the search for a seasoned Global Information Security Manager to enhance and lead their cybersecurity efforts. In this role, you will oversee the development and execution of security strategies, safeguard digital assets and customer data, and ensure robust cybersecurity practices across all business functions.

The ideal candidate will bring deep expertise in cybersecurity, particularly within the retail sector, and have the ability to translate complex security topics into actionable insights for both technical and non-technical audiences.

Key Responsibilities:

  • Develop and implement robust cybersecurity policies, standards, and best practices tailored for the retail environment.
  • Identify and prioritize security risks across digital platforms, stores, and internal systems, implementing appropriate mitigation strategies.
  • Design and maintain secure architectures covering IT infrastructure, POS systems, cloud platforms, and sensitive customer data.
  • Lead the development and execution of incident response plans; manage security incidents effectively and ensure timely resolution.
  • Conduct regular security assessments including vulnerability scans and penetration tests; oversee remediation activities.
  • Partner with cross-functional teams (IT, operations, legal, marketing) to embed security into ongoing business initiatives.
  • Ensure compliance with relevant cybersecurity frameworks and regulations (e.g., GDPR, PCI-DSS, NIST, ISO 27001).
  • Drive security awareness and training programs for staff on topics such as phishing prevention and best practices.
  • Manage external security vendors and service providers to ensure compliance and service quality.
  • Define and track key security metrics and KPIs to evaluate program effectiveness and drive continuous improvement.

Requirements:

  • Bachelor's degree in Information Security, Computer Science, or a related field (Master's preferred).
  • Minimum of 8 years' experience in cybersecurity
  • Proven track record in building and managing enterprise-wide security programs and operations.
  • Deep expertise in network, cloud, application security, and data protection.
  • Hands-on experience with public cloud environments (AWS, Azure, GCP).
  • Strong knowledge of regulatory and compliance requirements (PCI-DSS, GDPR, etc.).
  • Familiarity with security frameworks such as NIST and ISO 27001.

To Apply:

If you're keen to explore this opportunity, please share your CV or reach out to Chen Yi at for a confidential discussion.

Kindly note that due to the high volume of applications, only shortlisted candidates will be contacted.

Registration No.: R1876389

Licence No.: 16S8060

Seniority level
  • Seniority level Mid-Senior level
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Information Services

Referrals increase your chances of interviewing at Kerry Consulting by 2x

Sign in to set job alerts for “Information Security Manager” roles. Technology Risk Manager (IT Security) – Information Technology Department

Sha Tin District, Hong Kong SAR 6 days ago

IT Security and Operation Specialist (Asst Manager Level) Senior Technology Risk Manager (Overseas Branch) Senior Manager / Manager, IT Audit - SAP Technology Risk Management – Manager (Overseas Branch) Senior Audit Manager, Technology & Architecture

Kwun Tong District, Hong Kong SAR 1 month ago

Senior Credit Risk Analytics Manager - Risk and Compliance Senior Manager Wholesale Regulatory Affairs and Credit Policy - Risk and Compliance Senior Manager, Information Security Risk and Assurance

Sha Tin District, Hong Kong SAR 6 days ago

Senior IT Operations and Security Manager - Prominent Tech Firm Group IT & Cybersecurity Manager (Hands-on, all-round) Senior Manager, Group Information Security Assistant Manager, Business Information Security Office Information and Technology Manager (Security Management) (Ref: ISD-AL) Technology Consulting - Cyber Security - Security Governance - Senior Associate - Hong Kong Technology Consulting - Cyber Security - Blue Team - Senior Associate - Hong Kong Technology Consulting - Cyber Security and Privacy Protection - Senior Associate - Hong Kong Consultant/ Senior Consultant/ Manager - Data Privacy and Protection (Technical) - Cyber - Hong Kong(314380) Consultant/ Senior Consultant/ Manager - Data Privacy and Protection - Cyber - Hong Kong(314381)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Assistant Information Security Manager

PFCC Group

Posted 4 days ago

Job Viewed

Tap Again To Close

Job Description

2 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from PFCC Group

Associate Director - Talent Solutions | Technology Recruitment

The Assistant Manager will oversee the operational effectiveness of the firms cybersecurity tools and lead strategic initiatives to enhance infrastructure security. This role involves managing a team of analysts, coordinating with IT and business units, and ensuring compliance with security policies and standards.

Experience in implementing, suppoting and incident handling/escalation with tools such as Forcepoint, Qualys, CyberArk & Symantec.

The successful candidate will have experience with senior level stakeholder engagement, leading a team of Analysts, managing vendors, and handling incidents in a competent and professional manner.

In essence: This role demands a technically proficient security professional who can ensure robust daily operations of critical security tools, drive strategic improvements, manage a team and stakeholders effectively, and maintain strict compliance – all within complex cloud/hybrid environments. Senior-level engagement and incident competence are crucial.

Key Responsibilities:

  • Team & Operations Management: Oversee daily security tooling operations (Forcepoint, Qualys, CyberArk, Symantec), ensuring high availability & performance. Manage a team of analysts.
  • Strategy & Projects: Plan and execute security tool upgrades/new implementations. Lead strategic initiatives to enhance infrastructure security.
  • Stakeholder & Vendor Management: Coordinate closely with IT, business units, and vendors. Ensure alignment with organizational goals.
  • Compliance & Governance: Ensure adherence to ITIL processes, corporate security policies, and compliance frameworks. Lead internal audits & risk assessments, reporting findings to senior management.
  • Incident & Security Management: Oversee incident response and resolution. Review firewall/access control changes.
  • Team Development: Train, mentor, and develop team capabilities.

Critical Experience Required:

  • 6+ years in Information Security , including team leadership .
  • Proven hands-on experience: Implementing, supporting, and handling incidents/escalations for key tools (Forcepoint, Qualys, CyberArk, Symantec ).
  • Operational Expertise: Managing security tools/infrastructure in cloud/hybrid environments .
  • Process & Compliance: Strong understanding of ITIL, risk management, and compliance frameworks .
  • Stakeholder Engagement: Experience engaging senior stakeholders competently and professionally.
  • Leadership: Strong leadership, coaching, and team management skills.
  • Technical Acumen: Strategic thinker with hands-on technical expertise in security infrastructure.
  • Communication: Excellent communication and stakeholder management abilities.
  • Change Management: Ability to drive change and foster continuous improvement.
  • Incident Handling: Competence in managing security incidents.

Education & Credentials:

  • Essential: Bachelor’s degree in Computer Science or related field.
  • Highly Preferred: Advanced certifications (CISSP, CISM, PMP).

Performance Measured By (KPIs):

  • Team performance & SLA adherence.
  • Successful delivery of security projects.
Seniority level
  • Seniority level Not Applicable
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Business Consulting and Services, Financial Services, and Hospitality

Referrals increase your chances of interviewing at PFCC Group by 2x

Sign in to set job alerts for “Information Security Manager” roles. Head of Technology Risk Management, Risk Management Group Technology Consulting - Cyber Security - Security Governance - Senior Associate - Hong Kong Technology Consulting - Cyber Security - Blue Team - Senior Associate - Hong Kong Technology Consulting - Cyber Security and Privacy Protection - Senior Associate - Hong Kong Manager, Wealth Management Compliance Advisory - Mox

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Global Information Security Manager

Hong Kong, Hong Kong Kerry Consulting

Posted today

Job Viewed

Tap Again To Close

Job Description

Direct message the job poster from Kerry Consulting

We are partnering with a Global MNC in the search for a seasoned Global Information Security Manager to enhance and lead their cybersecurity efforts. In this role, you will oversee the development and execution of security strategies, safeguard digital assets and customer data, and ensure robust cybersecurity practices across all business functions.

The ideal candidate will bring deep expertise in cybersecurity, particularly within the retail sector, and have the ability to translate complex security topics into actionable insights for both technical and non-technical audiences.

Key Responsibilities:

  • Develop and implement robust cybersecurity policies, standards, and best practices tailored for the retail environment.
  • Identify and prioritize security risks across digital platforms, stores, and internal systems, implementing appropriate mitigation strategies.
  • Design and maintain secure architectures covering IT infrastructure, POS systems, cloud platforms, and sensitive customer data.
  • Lead the development and execution of incident response plans; manage security incidents effectively and ensure timely resolution.
  • Conduct regular security assessments including vulnerability scans and penetration tests; oversee remediation activities.
  • Partner with cross-functional teams (IT, operations, legal, marketing) to embed security into ongoing business initiatives.
  • Ensure compliance with relevant cybersecurity frameworks and regulations (e.g., GDPR, PCI-DSS, NIST, ISO 27001).
  • Drive security awareness and training programs for staff on topics such as phishing prevention and best practices.
  • Manage external security vendors and service providers to ensure compliance and service quality.
  • Define and track key security metrics and KPIs to evaluate program effectiveness and drive continuous improvement.

Requirements:

  • Bachelor's degree in Information Security, Computer Science, or a related field (Master's preferred).
  • Minimum of 8 years' experience in cybersecurity
  • Proven track record in building and managing enterprise-wide security programs and operations.
  • Deep expertise in network, cloud, application security, and data protection.
  • Hands-on experience with public cloud environments (AWS, Azure, GCP).
  • Strong knowledge of regulatory and compliance requirements (PCI-DSS, GDPR, etc.).
  • Familiarity with security frameworks such as NIST and ISO 27001.

To Apply:

If you're keen to explore this opportunity, please share your CV or reach out to Chen Yi at for a confidential discussion.

Kindly note that due to the high volume of applications, only shortlisted candidates will be contacted.

Registration No.: R1876389

Licence No.: 16S8060

Seniority level
  • Seniority level Mid-Senior level
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Information Services

Referrals increase your chances of interviewing at Kerry Consulting by 2x

Sign in to set job alerts for “Information Security Manager” roles. Technology Risk Manager (IT Security) – Information Technology Department

Sha Tin District, Hong Kong SAR 6 days ago

IT Security and Operation Specialist (Asst Manager Level) Senior Technology Risk Manager (Overseas Branch) Senior Manager / Manager, IT Audit - SAP Technology Risk Management – Manager (Overseas Branch) Senior Audit Manager, Technology & Architecture

Kwun Tong District, Hong Kong SAR 1 month ago

Senior Credit Risk Analytics Manager - Risk and Compliance Senior Manager Wholesale Regulatory Affairs and Credit Policy - Risk and Compliance Senior Manager, Information Security Risk and Assurance

Sha Tin District, Hong Kong SAR 6 days ago

Senior IT Operations and Security Manager - Prominent Tech Firm Group IT & Cybersecurity Manager (Hands-on, all-round) Senior Manager, Group Information Security Assistant Manager, Business Information Security Office Information and Technology Manager (Security Management) (Ref: ISD-AL) Technology Consulting - Cyber Security - Security Governance - Senior Associate - Hong Kong Technology Consulting - Cyber Security - Blue Team - Senior Associate - Hong Kong Technology Consulting - Cyber Security and Privacy Protection - Senior Associate - Hong Kong Consultant/ Senior Consultant/ Manager - Data Privacy and Protection (Technical) - Cyber - Hong Kong(314380) Consultant/ Senior Consultant/ Manager - Data Privacy and Protection - Cyber - Hong Kong(314381)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.
Be The First To Know

About the latest Information security manager Jobs in Hong Kong !

Assistant Information Security Manager

Hong Kong, Hong Kong PFCC Group

Posted 4 days ago

Job Viewed

Tap Again To Close

Job Description

2 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from PFCC Group

Associate Director - Talent Solutions | Technology Recruitment

The Assistant Manager will oversee the operational effectiveness of the firms cybersecurity tools and lead strategic initiatives to enhance infrastructure security. This role involves managing a team of analysts, coordinating with IT and business units, and ensuring compliance with security policies and standards.

Experience in implementing, suppoting and incident handling/escalation with tools such as Forcepoint, Qualys, CyberArk & Symantec.

The successful candidate will have experience with senior level stakeholder engagement, leading a team of Analysts, managing vendors, and handling incidents in a competent and professional manner.

In essence: This role demands a technically proficient security professional who can ensure robust daily operations of critical security tools, drive strategic improvements, manage a team and stakeholders effectively, and maintain strict compliance – all within complex cloud/hybrid environments. Senior-level engagement and incident competence are crucial.

Key Responsibilities:

  • Team & Operations Management: Oversee daily security tooling operations (Forcepoint, Qualys, CyberArk, Symantec), ensuring high availability & performance. Manage a team of analysts.
  • Strategy & Projects: Plan and execute security tool upgrades/new implementations. Lead strategic initiatives to enhance infrastructure security.
  • Stakeholder & Vendor Management: Coordinate closely with IT, business units, and vendors. Ensure alignment with organizational goals.
  • Compliance & Governance: Ensure adherence to ITIL processes, corporate security policies, and compliance frameworks. Lead internal audits & risk assessments, reporting findings to senior management.
  • Incident & Security Management: Oversee incident response and resolution. Review firewall/access control changes.
  • Team Development: Train, mentor, and develop team capabilities.

Critical Experience Required:

  • 6+ years in Information Security , including team leadership .
  • Proven hands-on experience: Implementing, supporting, and handling incidents/escalations for key tools (Forcepoint, Qualys, CyberArk, Symantec ).
  • Operational Expertise: Managing security tools/infrastructure in cloud/hybrid environments .
  • Process & Compliance: Strong understanding of ITIL, risk management, and compliance frameworks .
  • Stakeholder Engagement: Experience engaging senior stakeholders competently and professionally.
  • Leadership: Strong leadership, coaching, and team management skills.
  • Technical Acumen: Strategic thinker with hands-on technical expertise in security infrastructure.
  • Communication: Excellent communication and stakeholder management abilities.
  • Change Management: Ability to drive change and foster continuous improvement.
  • Incident Handling: Competence in managing security incidents.

Education & Credentials:

  • Essential: Bachelor’s degree in Computer Science or related field.
  • Highly Preferred: Advanced certifications (CISSP, CISM, PMP).

Performance Measured By (KPIs):

  • Team performance & SLA adherence.
  • Successful delivery of security projects.
Seniority level
  • Seniority level Not Applicable
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Business Consulting and Services, Financial Services, and Hospitality

Referrals increase your chances of interviewing at PFCC Group by 2x

Sign in to set job alerts for “Information Security Manager” roles. Head of Technology Risk Management, Risk Management Group Technology Consulting - Cyber Security - Security Governance - Senior Associate - Hong Kong Technology Consulting - Cyber Security - Blue Team - Senior Associate - Hong Kong Technology Consulting - Cyber Security and Privacy Protection - Senior Associate - Hong Kong Manager, Wealth Management Compliance Advisory - Mox

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.

Information Security Manager - Dah Sing Financial Group

Dah Sing Financial Group

Posted today

Job Viewed

Tap Again To Close

Job Description

full-time

About Dah Sing Group
The Dah Sing Group is a leading financial services group in Hong Kong offering banking, insurance, financial and other related services through its growing network of over 70 branches in Hong Kong, Macau and Mainland China.
Our currency is caring, teamwork and progressiveness. We accept that everyone is unique and different in talent, but alike in the capacity for growth. Our task is to shape a culture that creates a sense of pride in achieving something beyond just a job, and an environment where you can be your true and authentic self, like at home.



Job Purpose:


Reporting to the Head of Information Security to support delivering information security services and carrying out information security related activities.



Job Description of the position:


• Conduct cyber security testing covering penetration test, Infra and Web Manage security tools
• Manage network security system covering firewall, NAC, IPS, SIEM and etc.
• Act as project manager role on Information security projects.
• Support and Analyze cybersecurity incidents and make recommendations on remedial actions.
• Define and design adequate security controls to maintain secure control environment.
• Provide security advisory service to stakeholders on new initiatives and development projects.
• Implement systems and procedures to enable digital forensics capabilities
• Maintain Cyber Incident Response plan and playbook. Conduct cyber incident response drill in regular basis.



Incumbent Requirements:


• University graduate in Computer Science / Information Technology or equivalent.
• Minimum 6 years of relevant work experience in information security, cybersecurity or technology risk
• Possess one or more professional certificates : OCSP, CISSP, CISM, CCSP, CISA
• Solid experience on penetration test, red/blue team exercise and network security including firewall, NAC, IPS.
• Sound knowledge of regulators' requirement on Cyber Resilience Assessment Framework (CRAF)
• Sound knowledge of vulnerability management and threat intelligence analysis.
• Strong communication in both Chinese and English; Good communication and interpersonal skills.
• Mature, independent and able to deliver quality results under tight schedule.


Please note that only shortlisted candidates will be notified.


This advertiser has chosen not to accept applicants from your region.

Manager, Information Security Policy & Compliance

Hong Kong, Hong Kong The Hong Kong Jockey Club

Posted 4 days ago

Job Viewed

Tap Again To Close

Job Description

Manager, Information Security Policy & Compliance

Join to apply for the Manager, Information Security Policy & Compliance role at The Hong Kong Jockey Club

Manager, Information Security Policy & Compliance

4 days ago Be among the first 25 applicants

Join to apply for the Manager, Information Security Policy & Compliance role at The Hong Kong Jockey Club

Job Summary

Reporting to the Senior Manager, ISRA, you will be a key member involved in uplifting the Club’s information security assurance as a second line of defence. You will be developing and maintaining Information Security Policy, Acceptable Use Policy and other policies. You will also be designing and implementing a compliance self-assessment programme for the compliance of the policies. You will also be involved in other information security assurance and technology risk management activities as assigned.

Job Summary

Reporting to the Senior Manager, ISRA, you will be a key member involved in uplifting the Club’s information security assurance as a second line of defence. You will be developing and maintaining Information Security Policy, Acceptable Use Policy and other policies. You will also be designing and implementing a compliance self-assessment programme for the compliance of the policies. You will also be involved in other information security assurance and technology risk management activities as assigned.

The Job

You will:

  • Develop and maintain information security policies.
  • Perform compliance assessment against information security policies.
  • Assist in programme management, and work with external consultants to deliver technology risk and information security projects.
  • Conduct information security risk assessments and control assurance testing.
  • Assist in delivering information security initiatives and prepare necessary documentation.
  • Assist in technology risk management activities.
  • Monitor and report on security metrics and trends to monitor the technology and information security risks.
  • Promote security awareness within the organization, fostering a culture of risk management.


About You

You should have:

  • University degree in Computer Science, Information Technology, Cybersecurity, Engineering, Risk Management or related fields.
  • 5 to 7 years of practical experience in Cyber Security or Technology Risk roles.
  • Hands-on experience in enterprise security infrastructure, risk assessments, and security testing.
  • Experience with identity and access management systems and principles.
  • Familiarity with security frameworks and standards (e.g. ISO27001, NIST).
  • Understand second line of defence roles and responsibilities.
  • Relevant certifications such as CISSP, CISA or CISM are preferred.


Terms of Employment

The level of appointment will be commensurate with qualification and experience.

How to Apply

Please send your resume, complete with expected salary and job reference by clicking the Apply Now.

We are an equal opportunity employer. Personal data provided by job applicants will be used strictly in accordance with the Club's notice to employees and prospective employees relating to the Personal Data (Privacy) Ordinance. A copy of which will be provided immediately upon request.

Seniority level
  • Seniority level Mid-Senior level
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Non-profit Organizations

Referrals increase your chances of interviewing at The Hong Kong Jockey Club by 2x

Sign in to set job alerts for “Information Security Manager” roles. Cybersecurity Manager, Group Cybersecurity Senior Security Consultant/ Cybersecurity Manager (CISSP, CISA, CISM) - 60K+B

Kwun Tong District, Hong Kong SAR 1 month ago

Senior Manager, IT Governance and Architecture Manager, Cyber Security (DTD079/25, 10360)

Kwun Tong District, Hong Kong SAR 4 days ago

Deputy Executive Manager, Security Architecture

Sha Tin District, Hong Kong SAR 1 week ago

Technology Risk Manager (IT Security) – Information Technology Department Assistant Technical Manager, Cyber Security

Sha Tin District, Hong Kong SAR 2 weeks ago

Service Delivery Manager (Cybersecurity) Cyber Engagement Lead, Mandiant Consulting, Google Cloud Manager, Operational and Strategic Risk (Cyber Security) Technical Manager, Data Security & Protection

Sha Tin District, Hong Kong SAR 1 week ago

Senior Technical Manager, Cyber Defense Engineering

Sha Tin District, Hong Kong SAR 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr
This advertiser has chosen not to accept applicants from your region.
 

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Information Security Manager Jobs