62 IT Governance jobs in Hong Kong

1 day ago Be among the first 25 applicants

Founded in 1956, Maxim’s Group is one of Asia’s leading food and beverage companies, operating Chinese, Western, Japanese and Southeast Asian restaurants, quick service outlets, bakery shops and cafes, and an institutional catering service. Maxim's Group also produces a range of festive products, including the award-winning Hong Kong MX Mooncakes, and is a licensee of Starbucks Coffee, Genki Sushi, IPPUDO, The Cheesecake Factory and Shake Shack in various territories. Altogether, the Group has over 40,000 employees and 2,000 outlets in Asia.

Proud of our heritage and humbled by our success, we are committed to a sustainable and innovative future. To learn more about Maxim’s, visit

Job Responsibilities:

• Conduct technical security assessments on IT and digital initiatives, with a focus on application security
• Identify and mitigate security vulnerabilities in applications, APIs, and software development processes
• Collaborate with development teams to integrate security practices into the Software Development Lifecycle (SDLC) and CI/CD pipelines
• Develop and enforce secure coding standards and guidelines for application development
• Assess and implement tools and technologies for application security testing (e.g., SAST, DAST, SCA)
• Provide awareness training on application security best practices
• Investigate and manage application-related cybersecurity incidents
• Stay updated on emerging application security threats and trends to proactively address risks
• Assist in defining technical solutions to protect company assets, with a focus on application security
• Regularly review internal policies and global standards (e.g., NIST, ISO 27001, PCI DSS) to ensure ongoing compliance
• Assist IT teams in internal and external audits, including pre-audit review, liaison with auditors and stakeholders, and post-audit follow-up
• Investigate and manage cyber security incidents

Job Requirements:

• Minimum 8 years or more of hands-on experience in application security, preferably in a sizable organization with a regional presence in AP (e.g., China, Southeast Asian Market)
• Strong practical experience in application security testing, vulnerability management, and secure coding practices
• Familiarity with application security tools (e.g., Burp Suite, Veracode, SonarQube, OWASP ZAP) and methodologies (e.g., OWASP Top 10)
• Knowledge of integrating security into DevOps practices (DevSecOps) and CI/CD pipelines
• Excellent communication and interpersonal skills to collaborate with development teams and stakeholders
• Proactive, problem-solving mindset with the ability to work under pressure
• Possession of relevant certifications (e.g., OSCP, CISSP, CEH, GWAPT, CSSLP) is a strong advantage

Interested parties please apply with full resume, state current and expected salaries by clicking "Apply Now".

All applications and data collected will be treated in strict confidence and used exclusively for recruitment purposes. Only short listed candidates will be invited for interview. The company will retain the applications for a maximum period of 24 months and may refer suitable candidates to other vacancies within the Group.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Management and Information Technology
• Industries Food and Beverage Services, Hospitality, and Retail

Referrals increase your chances of interviewing at Hong Kong Maxim's Group by 2x

Get notified about new Application Security Manager jobs in Kowloon, Hong Kong SAR .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

3 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

We are looking for an experienced and strategic Technology Governance Lead to play a pivotal role in overseeing the implementation and operation of security controls across diverse technology domains. With over 12 years of experience in cybersecurity, technology risk, and third-party security management, the ideal candidate will bring strong leadership, analytical thinking, and stakeholder engagement skills to drive governance excellence across the organization.

You Role

• Govern and monitor the implementation of security controls across infrastructure, applications, cloud, and physical security of secure areas.
• Manage security audits and assessments and coordinate with relevant IT teams, ensuring timely and accurate responses to client and auditors.
• Develop and deliver security reporting for senior management, highlighting key risks, metrics, and remediation progress.
• Lead third-party security management, including risk assessments, onboarding reviews, and ongoing compliance monitoring.
• Design and implement security awareness and training programs to promote a strong security culture across the organization.
• Collaborate with business and technology stakeholders to ensure alignment with governance frameworks and regulatory requirements.
• Manage and track responses to client and regulator security requirements, ensuring compliance and timely follow-through.
• Provide strategic input into security policies, standards, and procedures.
• Oversee physical security controls and ensure integration with broader cybersecurity governance.

To Succeed in this Role

• Minimum 12 years of experience in cybersecurity, technology risk, and governance.
• Strong understanding of technical and physical security controls across multiple technological domains.
• Proven experience in third-party security management, security reporting, and audit support.
• Excellent stakeholder and project management skills.
• Strong critical and logical thinking abilities with a detail-oriented mindset.
• Exceptional written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST).
• Relevant certifications (e.g., CISM, CISSP, CRISC, ISO 27001) are highly desirable.

Preferred Attributes

• Strategic thinker with a hands-on approach to governance and risk management.
• Ability to influence and engage stakeholders across all levels of the organization.
• Experience working in regulated industries such as finance, healthcare, or insurance is an advantage.

• Seniority level Director

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Technology Specialist jobs in Hong Kong, Hong Kong SAR .

Central & Western District, Hong Kong SAR 2 weeks ago

Wan Chai District, Hong Kong SAR 3 weeks ago

Wan Chai District, Hong Kong SAR 2 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

3 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

We are looking for an experienced and strategic Technology Governance Lead to play a pivotal role in overseeing the implementation and operation of security controls across diverse technology domains. With over 12 years of experience in cybersecurity, technology risk, and third-party security management, the ideal candidate will bring strong leadership, analytical thinking, and stakeholder engagement skills to drive governance excellence across the organization.

You Role

• Govern and monitor the implementation of security controls across infrastructure, applications, cloud, and physical security of secure areas.
• Manage security audits and assessments and coordinate with relevant IT teams, ensuring timely and accurate responses to client and auditors.
• Develop and deliver security reporting for senior management, highlighting key risks, metrics, and remediation progress.
• Lead third-party security management, including risk assessments, onboarding reviews, and ongoing compliance monitoring.
• Design and implement security awareness and training programs to promote a strong security culture across the organization.
• Collaborate with business and technology stakeholders to ensure alignment with governance frameworks and regulatory requirements.
• Manage and track responses to client and regulator security requirements, ensuring compliance and timely follow-through.
• Provide strategic input into security policies, standards, and procedures.
• Oversee physical security controls and ensure integration with broader cybersecurity governance.

To Succeed in this Role

• Minimum 12 years of experience in cybersecurity, technology risk, and governance.
• Strong understanding of technical and physical security controls across multiple technological domains.
• Proven experience in third-party security management, security reporting, and audit support.
• Excellent stakeholder and project management skills.
• Strong critical and logical thinking abilities with a detail-oriented mindset.
• Exceptional written and verbal communication skills in English.
• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST).
• Relevant certifications (e.g., CISM, CISSP, CRISC, ISO 27001) are highly desirable.

Preferred Attributes

• Strategic thinker with a hands-on approach to governance and risk management.
• Ability to influence and engage stakeholders across all levels of the organization.
• Experience working in regulated industries such as finance, healthcare, or insurance is an advantage.

• Seniority level Director

• Employment type Full-time

• Job function Information Technology
• Industries Software Development, Information Services, and Technology, Information and Media

Referrals increase your chances of interviewing at PCCW by 2x

Get notified about new Technology Specialist jobs in Hong Kong, Hong Kong SAR .

Central & Western District, Hong Kong SAR 2 weeks ago

Wan Chai District, Hong Kong SAR 3 weeks ago

Wan Chai District, Hong Kong SAR 2 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

1 day ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from The Bank of East Asia (BEA)

Position Summary

We are seeking an experienced and forward-thinking individual to oversee the governance of both traditional statistical models and Artificial Intelligence/ Machine Learning models used across the bank’s operations. This role is critical in ensuring the integrity and compliant use of models, by refining frameworks, policies, and controls for the lifecycle management of models, ensuring alignment with regulatory requirements and internal risk appetite.

This role is a member to the Model Governance function, reports to the Head of Risk Analytics and Governance Department, under Risk Management Division.

Responsibilities

• Develop, implement, and continuously improve the Model Governance framework across the bank, and maintain model governance documentation
• Support enforcement of governance structure, including model inventory tracking, model performance tracking, validation, accountability matrices, and escalation protocols
• Monitor emerging regulatory trends (from Hong Kong, Chinese Mainland as well as overseas) and adapt policies with evolving AI regulations and standards
• Ensure AI models are explainable, auditable, and ethically sound, through establishing protocols and implementing controls for bias detection, adversarial risk, and drift monitoring
• Identify critical and/ or high-risk areas on models during assessment
• Collaborate with compliance, legal, data science, and IT teams to identify and mitigate model-related risks

Requirements

• Bachelor’s or Master’s degree in Quantitative Finance, Statistics, Computer Science, Risk Management, or similar fields
• 7+ years’ experience in model governance, risk analytics, or quantitative modeling in banking or financial services
• In-depth understanding of both traditional statistical modeling and machine learning approaches
• Familiarity with regulatory requirements related to model risk/ governance
• Strong knowledge of model validation tools, vendor model risk platforms (e.g. SAS), performance metrics, and risk testing frameworks
• Excellent communication skills, with the ability to translate complex quantitative concepts into business and compliance language

Please apply online via the BEA Careers website at or by clicking the "Apply Now" button below. Kindly note that if you are a new user, you have to first create your User Profile before you can apply.

Personal data provided by job applicants will be used for recruitment purposes only and will be treated in accordance with the Bank's Personal Information Collection (Employees) Statement and Privacy Policy Statement. Applicants who are not invited for interviews within six weeks may consider their applications unsuccessful and the personal data collected will be destroyed after 1 year.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Finance, Accounting/Auditing, and Information Technology
• Industries Banking and Financial Services

Referrals increase your chances of interviewing at The Bank of East Asia (BEA) by 2x

Get notified about new Manager Risk Management jobs in Hong Kong, Hong Kong SAR .

Wan Chai District, Hong Kong SAR 1 week ago

Central & Western District, Hong Kong SAR 2 days ago

Central & Western District, Hong Kong SAR 17 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

1 day ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from The Bank of East Asia (BEA)

Position Summary

We are seeking an experienced and forward-thinking individual to oversee the governance of both traditional statistical models and Artificial Intelligence/ Machine Learning models used across the bank’s operations. This role is critical in ensuring the integrity and compliant use of models, by refining frameworks, policies, and controls for the lifecycle management of models, ensuring alignment with regulatory requirements and internal risk appetite.

This role is a member to the Model Governance function, reports to the Head of Risk Analytics and Governance Department, under Risk Management Division.

Responsibilities

• Develop, implement, and continuously improve the Model Governance framework across the bank, and maintain model governance documentation
• Support enforcement of governance structure, including model inventory tracking, model performance tracking, validation, accountability matrices, and escalation protocols
• Monitor emerging regulatory trends (from Hong Kong, Chinese Mainland as well as overseas) and adapt policies with evolving AI regulations and standards
• Ensure AI models are explainable, auditable, and ethically sound, through establishing protocols and implementing controls for bias detection, adversarial risk, and drift monitoring
• Identify critical and/ or high-risk areas on models during assessment
• Collaborate with compliance, legal, data science, and IT teams to identify and mitigate model-related risks

Requirements

• Bachelor’s or Master’s degree in Quantitative Finance, Statistics, Computer Science, Risk Management, or similar fields
• 7+ years’ experience in model governance, risk analytics, or quantitative modeling in banking or financial services
• In-depth understanding of both traditional statistical modeling and machine learning approaches
• Familiarity with regulatory requirements related to model risk/ governance
• Strong knowledge of model validation tools, vendor model risk platforms (e.g. SAS), performance metrics, and risk testing frameworks
• Excellent communication skills, with the ability to translate complex quantitative concepts into business and compliance language

Please apply online via the BEA Careers website at or by clicking the "Apply Now" button below. Kindly note that if you are a new user, you have to first create your User Profile before you can apply.

Personal data provided by job applicants will be used for recruitment purposes only and will be treated in accordance with the Bank's Personal Information Collection (Employees) Statement and Privacy Policy Statement. Applicants who are not invited for interviews within six weeks may consider their applications unsuccessful and the personal data collected will be destroyed after 1 year.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Finance, Accounting/Auditing, and Information Technology
• Industries Banking and Financial Services

Referrals increase your chances of interviewing at The Bank of East Asia (BEA) by 2x

Get notified about new Manager Risk Management jobs in Hong Kong, Hong Kong SAR .

Wan Chai District, Hong Kong SAR 1 week ago

Central & Western District, Hong Kong SAR 2 days ago

Central & Western District, Hong Kong SAR 17 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the AVP, Quantitative Risk Methodology & Governance role at Hong Kong Exchanges and Clearing Limited (HKEX)

2 days ago Be among the first 25 applicants

Join to apply for the AVP, Quantitative Risk Methodology & Governance role at Hong Kong Exchanges and Clearing Limited (HKEX)

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.

Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:

Quantitative Risk Management (QRM) is responsible for providing governance to the first line risk teams across all HKEX group clearing houses on initiatives such as new product/service launch, methodology changes and model parameter reviews. The team is also responsible for establishing the model risk governance framework of the group, financial risk policy / appetite reviews, group level financial risk data management and other group risk management related quantitative modelling works for continued enhancements of its risk management capabilities.

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.

Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:

Quantitative Risk Management (QRM) is responsible for providing governance to the first line risk teams across all HKEX group clearing houses on initiatives such as new product/service launch, methodology changes and model parameter reviews. The team is also responsible for establishing the model risk governance framework of the group, financial risk policy / appetite reviews, group level financial risk data management and other group risk management related quantitative modelling works for continued enhancements of its risk management capabilities.

Job Duties:

Responsibilities:

• Join a high calibre team of quant analysts and developers within the Group Quant Risk team in HK.
• Participate actively in model development & implementation involving new products, clearing houses market risk, investment market risk and liquidity risk, including testing, analysis and on-going enhancement etc.
• Lead / support projects in Quantitative Risk Methodology and Governance team, liaising with cross departmental stakeholders and regulators.
• Responsible for other project-based tasks as and when assigned.
• Collaborate closely with the model validation team to facilitate the validation of models that the team developed or owned; and work on enhancements to implement new models / methodologies or to improve existing models / methodologies.
  
  

• A degree holder in accounting, finance or quantitative field (Physics, Mathematics, Financial Engineering, Electrical Engineering, Statistics, etc.)
• Professional qualifications, such as CPF, CFA, FRM are preferred
• At least 4-8 years of relevant experiences working in financial markets, experience in market and/or liquidity risk management is a plus. Candidates with less experience will be considered for an Associate role.
• Knowledge of financial and investment products and the related risks factors and trading dynamics
• Strong analytical and problem-solving skills
• Outstanding aptitude for teamwork and willingness to learn
• Good written and verbal communication skills are required
• Fluent in English
  
  

• Seniority level Executive

• Employment type Full-time

• Job function Finance and Sales

Referrals increase your chances of interviewing at Hong Kong Exchanges and Clearing Limited (HKEX) by 2x

Get notified about new Vice President of Risk jobs in Hong Kong, Hong Kong SAR .

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 2 days ago

Shenzhen, Guangdong, China CN¥80,000.00-CN¥100,000.00 1 year ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the AVP, Quantitative Risk Methodology & Governance role at Hong Kong Exchanges and Clearing Limited (HKEX)

2 days ago Be among the first 25 applicants

Join to apply for the AVP, Quantitative Risk Methodology & Governance role at Hong Kong Exchanges and Clearing Limited (HKEX)

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:
Quantitative Risk Management (QRM) is responsible for providing governance to the first line risk teams across all HKEX group clearing houses on initiatives such as new product/service launch, methodology changes and model parameter reviews. The team is also responsible for establishing the model risk governance framework of the group, financial risk policy / appetite reviews, group level financial risk data management and other group risk management related quantitative modelling works for continued enhancements of its risk management capabilities.

Company Introduction:
We’re home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.
HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."
Job Summary:
Quantitative Risk Management (QRM) is responsible for providing governance to the first line risk teams across all HKEX group clearing houses on initiatives such as new product/service launch, methodology changes and model parameter reviews. The team is also responsible for establishing the model risk governance framework of the group, financial risk policy / appetite reviews, group level financial risk data management and other group risk management related quantitative modelling works for continued enhancements of its risk management capabilities.
Job Duties:
Responsibilities:

• Join a high calibre team of quant analysts and developers within the Group Quant Risk team in HK.
• Participate actively in model development & implementation involving new products, clearing houses market risk, investment market risk and liquidity risk, including testing, analysis and on-going enhancement etc.
• Lead / support projects in Quantitative Risk Methodology and Governance team, liaising with cross departmental stakeholders and regulators.
• Responsible for other project-based tasks as and when assigned.
• Collaborate closely with the model validation team to facilitate the validation of models that the team developed or owned; and work on enhancements to implement new models / methodologies or to improve existing models / methodologies.
  

• A degree holder in accounting, finance or quantitative field (Physics, Mathematics, Financial Engineering, Electrical Engineering, Statistics, etc.)
• Professional qualifications, such as CPF, CFA, FRM are preferred
• At least 4-8 years of relevant experiences working in financial markets, experience in market and/or liquidity risk management is a plus. Candidates with less experience will be considered for an Associate role.
• Knowledge of financial and investment products and the related risks factors and trading dynamics
• Strong analytical and problem-solving skills
• Outstanding aptitude for teamwork and willingness to learn
• Good written and verbal communication skills are required
• Fluent in English
  

• Seniority level Executive

• Employment type Full-time

• Job function Finance and Sales

Referrals increase your chances of interviewing at Hong Kong Exchanges and Clearing Limited (HKEX) by 2x

Get notified about new Vice President of Risk jobs in Hong Kong, Hong Kong SAR .

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 2 days ago

Shenzhen, Guangdong, China CN¥80,000.00-CN¥100,000.00 1 year ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Associate Director, Trustee Governance role at Manulife

1 day ago Be among the first 25 applicants

Join to apply for the Associate Director, Trustee Governance role at Manulife

• Work under the Governance Team of Manulife Trustee.
• Conduct quality assurance review on the operational processes.
• Assist in the planning and implementation of the corporate or business initiatives from the governance perspective, ensuring compliance with the relevant legislation and statutory requirements.
• Scrutinize and provide comments upon review of various statutory and scheme documents, codes or guidelines.
• Assist in liaising with various internal and external stakeholders, including the regulator, for incident and management reporting or preparation of various documentation.
• Assist in identifying improvement needs for the MPF/ORSO operation and provide advice as required.
• Considering the legislative or statutory amendment, assist in addressing possible gaps and opportunities to facilitate change initiation.
  
  

• Work under the Governance Team of Manulife Trustee.
• Conduct quality assurance review on the operational processes.
• Assist in the planning and implementation of the corporate or business initiatives from the governance perspective, ensuring compliance with the relevant legislation and statutory requirements.
• Scrutinize and provide comments upon review of various statutory and scheme documents, codes or guidelines.
• Assist in liaising with various internal and external stakeholders, including the regulator, for incident and management reporting or preparation of various documentation.
• Assist in identifying improvement needs for the MPF/ORSO operation and provide advice as required.
• Considering the legislative or statutory amendment, assist in addressing possible gaps and opportunities to facilitate change initiation.
  
  

• Good communication, writing, and reading comprehension skills including the interpretation of regulatory materials.
• Good interpersonal skills required in negotiation and liaison with various internal and external stakeholders.
• Analytical, detail-oriented and organized.
• Conversant with MPF/ORSO legislation an advantage.
• Working experience at the regulator, the MPF/ORSO industry, and for jobs related to Governance or Quality Assurance an advantage.
• At least 10 years of working experience.
• Candidates who cannot meet all the above criteria may be considered for a less senior position.
  
  

• We’ll empower you to learn and grow the career you want.
• We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
• As part of our global team, we’ll support you in shaping the future you want to see.
  
  

• Seniority level Executive

• Employment type Full-time

• Job function Business Development and Sales
• Industries Insurance

Referrals increase your chances of interviewing at Manulife by 2x

Get notified about new Associate Director jobs in Hong Kong, Hong Kong SAR .

Central & Western District, Hong Kong SAR 2 weeks ago

Central & Western District, Hong Kong SAR 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.