136 Technology Risk jobs in Hong Kong

1 day ago Be among the first 25 applicants

• Maintain corporate-wide technology risk management and cyber resilience policy and process in compliance with the regulator’s requirements;
• As a second line of defense, assist risk owners in identifying and measuring risks to build a corporate-wide cyber and technology risks profile;
• Assist senior management in overseeing cyber and technology risks by ensuring controls are properly designed, implemented and operated as intended, and ascertain the consistency of risk assignment;
• Perform thematic review over bank technology-related operation and provide advisory towards new products or services
• Review residual risk level and control effectiveness to make recommendation for risk treatment;
• Assist team head to interpret key risk statistics for reporting to senior management on regular basis;
• Assist the coordination for evaluation on emerging cyber threat scenario for continuous improvement on cyber security response preparation for Business Continuity Management (BCM);
• Promote security awareness and ensure compliance with applicable security standards;
• Keep abreast of cyber threat trend to gauge the prevailing cyber threat landscape, and make recommendation on improving the bank risk posture;
• Keep abreast of technological knowledge in managed area of responsibility, and provide recommendations for adaptation of new technologies and standard with reference to prevailing industry best practices;
• Assist senior management overseeing the technology related incident management.

Requirement:

• University degree preferably in information technology, information security or related discipline;
• Minimum 5 years of experience in information security, technology risk management or IT Audit field;
• Holder of cybersecurity certificates - CRISC, CISA, CISM, CISSP or other equivalent certificates is preferred;
• Practical experience and knowledge in risk management framework and methodology;
• Knowledge in control frameworks such as C-RAF, TM-E-1, TM-G-1, SA-2 and relevant circulars published by the HKMA, SWIFT Customer Security Programme, PCI DSS, etc. are preferred;
• Experience in working for major financial institutions; and
• A good team player with sound interpersonal and communication skills, good command of English language and proficiency in Mandarin.

Applicants who are not invited for an interview within the 8 weeks after submission of application may assume their applications unsuccessful. We may review applications received for suitability for other posts within the Company. All personal data provided will be treated in strict confidence and used strictly for recruitment-related purposes only. We shall retain the personal data of unsuccessful applicants for a period of 24 months upon receipt of such application.

• Seniority level Associate

• Employment type Full-time

• Job function Information Technology
• Industries Banking

Referrals increase your chances of interviewing at ZA by 2x

Central & Western District, Hong Kong SAR 2 weeks ago

Wan Chai District, Hong Kong SAR 3 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

• Develop and translate technology risk and information security frameworks and guidelines according to SFC and company policies into practical action plan.
• Drive the implementation of technology risk policies and procedures to IT teams.
• Conduct periodic risk and control assessments from technology risk perspective.
• Lead IT's BCP arrangement and cooperate with the company's BCP workgroup for BCP needs.
• Lead and conduct forensic investigation for Cybersecurity and IT incidents when required.
  
  

• Develop and translate technology risk and information security frameworks and guidelines according to SFC and company policies into practical action plan.
• Drive the implementation of technology risk policies and procedures to IT teams.
• Conduct periodic risk and control assessments from technology risk perspective.
• Lead IT's BCP arrangement and cooperate with the company's BCP workgroup for BCP needs.
• Lead and conduct forensic investigation for Cybersecurity and IT incidents when required.
  
  

• Holder of Bachelors Degree or above in IT/Computer Science /Account related disciplines
• Certified in professional certifications, e.g.: CISA, CISM, CRISC, CISSP, etc.
• 12+ years' working experience in InfoSec/TRM/IT Audit
• Knowledge with SFC requirements on Technology Risk
• With sound knowledge of IT infrastructure, network security, SDLC, 3rd party risk and etc.
• Able to communicate in Chinese & English
  
  

• Seniority level Director

• Employment type Full-time

• Job function Information Technology

Get notified about new Associate Director of Technology jobs in Sheung Wan, Hong Kong SAR .

Sha Tin District, Hong Kong SAR 3 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

• Develop and translate technology risk and information security frameworks and guidelines according to SFC and company policies into practical action plan.
• Drive the implementation of technology risk policies and procedures to IT teams.
• Conduct periodic risk and control assessments from technology risk perspective.
• Lead IT's BCP arrangement and cooperate with the company's BCP workgroup for BCP needs.
• Lead and conduct forensic investigation for Cybersecurity and IT incidents when required.
  

• Develop and translate technology risk and information security frameworks and guidelines according to SFC and company policies into practical action plan.
• Drive the implementation of technology risk policies and procedures to IT teams.
• Conduct periodic risk and control assessments from technology risk perspective.
• Lead IT's BCP arrangement and cooperate with the company's BCP workgroup for BCP needs.
• Lead and conduct forensic investigation for Cybersecurity and IT incidents when required.
  

• Holder of Bachelors Degree or above in IT/Computer Science /Account related disciplines
• Certified in professional certifications, e.g.: CISA, CISM, CRISC, CISSP, etc.
• 12+ years' working experience in InfoSec/TRM/IT Audit
• Knowledge with SFC requirements on Technology Risk
• With sound knowledge of IT infrastructure, network security, SDLC, 3rd party risk and etc.
• Able to communicate in Chinese & English
  

• Seniority level Director

• Employment type Full-time

• Job function Information Technology

Get notified about new Associate Director of Technology jobs in Sheung Wan, Hong Kong SAR .

Sha Tin District, Hong Kong SAR 3 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Associate, Group Technology Risk Management role at Hong Kong Exchanges and Clearing Limited (HKEX)

Join to apply for the Associate, Group Technology Risk Management role at Hong Kong Exchanges and Clearing Limited (HKEX)

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.

Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:

We are seeking a detail-oriented professional with strong communication skills to support technology resilience and risk advisory activities across the HKEX Group. The role involves monitoring and reporting on cyber and technology risks, preparing clear and structured governance reports on control measures and their effectiveness, and enhancing incident readiness and response.

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.

Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:

We are seeking a detail-oriented professional with strong communication skills to support technology resilience and risk advisory activities across the HKEX Group. The role involves monitoring and reporting on cyber and technology risks, preparing clear and structured governance reports on control measures and their effectiveness, and enhancing incident readiness and response.

Job Duties:

Responsibilities:

• Help facilitate the governance and management of cyber and technology risks across the HKEX Group.
• Role will include coordinating with internal departments to track cyber and technology risk mitigating measures and controls; and help draft reports on control measures and their effectiveness for senior stakeholders.
• Support efforts to enhance the readiness of relevant stakeholders in handling cyber and technology incidents.
• Monitor and research emerging cyber and technology risk trends; escalate potential risks in a timely manner and propose appropriate mitigating measures.
• Identify cyber and technology risk implications for key projects and initiatives.
• Assist in defining practical policies, guidelines and playbooks which incorporate applicable legal and regulatory requirements, industry standards, and best practices.
• Support investigations into cyber and technology incidents or control lapses.
• Assist with cross-domain risk initiatives that support 2nd Line responsibilities as needed.
• Support the maintenance of effective relationships and collaboration with regulators, law enforcement, exchange peers and industry partners.
  
  

• At least 3-4 years of relevant experience in cyber and technology risk management, preferably in the financial services sector or professional services (e.g. Big 4 firms) supporting financial services clients.
• University degree in business, information security, computer science or related fields of study preferred.
• Excellent written and spoken English; proficiency in Cantonese and Putonghua would be an advantage.
• Strong communication skills with a proven ability to draft clear and structured communications on complex cyber and technology risk matters for both technical and business audiences.
• Experience in cyber and technology risk governance, system testing quality assurance, industry standards (including NIST CSF), policy formulation, incident management, assessment, and audits.
• Knowledge of IT environments and related controls from both tactical and strategic viewpoints.
• Track record in implementing changes or projects involving different stakeholders and aligning their interests.
• Relevant certifications such as CISA, CISSP, or equivalent preferred.
• General knowledge of financial markets, exchange operations, and regulatory practices highly regarded.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology

Referrals increase your chances of interviewing at Hong Kong Exchanges and Clearing Limited (HKEX) by 2x

Get notified about new Technology Associate jobs in Hong Kong, Hong Kong SAR .

Central, Hong Kong SAR SGD800.00-SGD1,200.00 4 weeks ago

Shenzhen, Guangdong, China CN¥120.00-CN¥20.00 1 year ago

Islands District, Hong Kong SAR 4 hours ago

Shenzhen, Guangdong, China CN ,000.00-CN 2,000.00 2 years ago

Wan Chai District, Hong Kong SAR 2 weeks ago

Shenzhen, Guangdong, China CN¥1 000.00-CN 5,000.00 1 year ago

Hong Kong, Hong Kong SAR HK$30,000.00-HK$40,000.00 4 days ago

Shenzhen, Guangdong, China CN ,000.00-CN ,000.00 2 years ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Associate, Group Technology Risk Management role at Hong Kong Exchanges and Clearing Limited (HKEX)

Join to apply for the Associate, Group Technology Risk Management role at Hong Kong Exchanges and Clearing Limited (HKEX)

Company Introduction:

We’re home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.

HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."

Job Summary:
We are seeking a detail-oriented professional with strong communication skills to support technology resilience and risk advisory activities across the HKEX Group. The role involves monitoring and reporting on cyber and technology risks, preparing clear and structured governance reports on control measures and their effectiveness, and enhancing incident readiness and response.

Company Introduction:
We’re home to Asia's most dynamic and vibrant capital markets.
Connecting capital, ideas, inspiration and innovation for deeper, more diverse and liquid global capital markets; providing greater choice and opportunity for our customers, each and every day.
HKEX is a purpose-driven company. Our commitment to the long-term development of our business and our markets is articulated in our purpose: "To Connect, Promote and Progress our Markets and the Communities they support for the prosperity of all."
Job Summary:
We are seeking a detail-oriented professional with strong communication skills to support technology resilience and risk advisory activities across the HKEX Group. The role involves monitoring and reporting on cyber and technology risks, preparing clear and structured governance reports on control measures and their effectiveness, and enhancing incident readiness and response.
Job Duties:
Responsibilities:

• Help facilitate the governance and management of cyber and technology risks across the HKEX Group.
• Role will include coordinating with internal departments to track cyber and technology risk mitigating measures and controls; and help draft reports on control measures and their effectiveness for senior stakeholders.
• Support efforts to enhance the readiness of relevant stakeholders in handling cyber and technology incidents.
• Monitor and research emerging cyber and technology risk trends; escalate potential risks in a timely manner and propose appropriate mitigating measures.
• Identify cyber and technology risk implications for key projects and initiatives.
• Assist in defining practical policies, guidelines and playbooks which incorporate applicable legal and regulatory requirements, industry standards, and best practices.
• Support investigations into cyber and technology incidents or control lapses.
• Assist with cross-domain risk initiatives that support 2nd Line responsibilities as needed.
• Support the maintenance of effective relationships and collaboration with regulators, law enforcement, exchange peers and industry partners.
  

• At least 3-4 years of relevant experience in cyber and technology risk management, preferably in the financial services sector or professional services (e.g. Big 4 firms) supporting financial services clients.
• University degree in business, information security, computer science or related fields of study preferred.
• Excellent written and spoken English; proficiency in Cantonese and Putonghua would be an advantage.
• Strong communication skills with a proven ability to draft clear and structured communications on complex cyber and technology risk matters for both technical and business audiences.
• Experience in cyber and technology risk governance, system testing quality assurance, industry standards (including NIST CSF), policy formulation, incident management, assessment, and audits.
• Knowledge of IT environments and related controls from both tactical and strategic viewpoints.
• Track record in implementing changes or projects involving different stakeholders and aligning their interests.
• Relevant certifications such as CISA, CISSP, or equivalent preferred.
• General knowledge of financial markets, exchange operations, and regulatory practices highly regarded.
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology

Referrals increase your chances of interviewing at Hong Kong Exchanges and Clearing Limited (HKEX) by 2x

Get notified about new Technology Associate jobs in Hong Kong, Hong Kong SAR .

Central, Hong Kong SAR SGD800.00-SGD1,200.00 4 weeks ago

Shenzhen, Guangdong, China CN¥120.00-CN¥20.00 1 year ago

Islands District, Hong Kong SAR 4 hours ago

Shenzhen, Guangdong, China CN ,000.00-CN 2,000.00 2 years ago

Wan Chai District, Hong Kong SAR 2 weeks ago

Shenzhen, Guangdong, China CN¥1 000.00-CN 5,000.00 1 year ago

Hong Kong, Hong Kong SAR HK$30,000.00-HK$40,000.00 4 days ago

Shenzhen, Guangdong, China CN ,000.00-CN ,000.00 2 years ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Consultant / Senior Consultant, Technology Risk, Technology Consulting (MJ005231) role at KPMG China

Join to apply for the Consultant / Senior Consultant, Technology Risk, Technology Consulting (MJ005231) role at KPMG China

Get AI-powered advice on this job and more exclusive features.

KPMG China provides multidisciplinary services from audit and tax to advisory, with a strong focus on serving our clients’ needs and their industries. Not only do we have an overriding commitment to provide the highest quality services for our clients, but we also strive to become a responsible corporate citizen that has a positive impact on our environment and community. At KPMG, you’ll translate insights into action and reveal opportunities for all—our teams, our clients and our world.

Service Line Overview

At KPMG's Consulting practice, we do not limit ourselves to either strategy or implementation. We deliver both. Our Hong Kong division is the fastest growing within KPMG China and represents a young and enthusiastic team that always pushes for success. Since our inception, we have acquired in-depth knowledge of an incredibly broad range of sectors and services.

KPMG’s Technology Risk team focus on the use of technology by our clients and help 1st , 2nd and 3rd line of defense in navigating the relevant technology risk and compliance matters in a strategic and tactical manner. Our professionals do this by leveraging our strong industry, IT control and technology focus and experience; deploying leading methodologies and tools; applying our objectivity; using a balanced approach to growth and risk; utilizing our comprehensive global breadth and local knowledge; and calling upon our deep understanding of relevant business, financial, and regulatory inter-dependencies.

KPMG is currently seeking both Senior Consultants and Consultants to join the team

Key Responsibilities

• Assist in planning activities, development of assessment program, and execution of IT-related internal audits and risk assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
• Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement managers and client management
• Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
• Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard KPMG and industry-accepted methodologies
• Assist in kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
  
  
  

• Plan and execute IT-related risk assessments with a focus on strategic, operational and regulatory/compliance related risks
• Lead kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
• Supervise consultants on engagements
  
  
  

• Minimum of 2 years of experience working within an IT internal audit, IT risk or IT compliance function as an internal employee or as part of a professional consultancy firm
• Bachelor's degree from an accredited college/university or equivalent work experience; CISA, PMP, CISSP or CRISC certification is preferred
• Familiarity leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, ITIL or regulatory compliance requirements
• Experience in implementation of internal control processes and programs for IT
• Proficiency in executing projects in accordance with leading practice project management principles
• Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level in order to communicate findings and recommendations to the clients and senior management team
  
  
  

• Well-structured career development and learning path, 1-to-1 coaching by our cybersecurity partners
• Access to various cyber security learning resources
• Wide exposure to working with leading financial institutions and multi-national corporations
• Continuous sponsorship and support on professional certificate development (i.e. Offensive Security, GIAC, CREST, etc.)
• Opportunities for secondment / exchange within KPMG Global network based on staff performance and preference
• One annual professional membership sponsorship on the approved list
• Work in a passionate team with blended cybersecurity and technology risk talents
  
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Professional Services

Referrals increase your chances of interviewing at KPMG China by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Consultant / Senior Consultant, Technology Risk, Technology Consulting (MJ005231) role at KPMG China

Join to apply for the Consultant / Senior Consultant, Technology Risk, Technology Consulting (MJ005231) role at KPMG China

Get AI-powered advice on this job and more exclusive features.

KPMG China provides multidisciplinary services from audit and tax to advisory, with a strong focus on serving our clients’ needs and their industries. Not only do we have an overriding commitment to provide the highest quality services for our clients, but we also strive to become a responsible corporate citizen that has a positive impact on our environment and community. At KPMG, you’ll translate insights into action and reveal opportunities for all—our teams, our clients and our world.
Service Line Overview
At KPMG's Consulting practice, we do not limit ourselves to either strategy or implementation. We deliver both. Our Hong Kong division is the fastest growing within KPMG China and represents a young and enthusiastic team that always pushes for success. Since our inception, we have acquired in-depth knowledge of an incredibly broad range of sectors and services.
KPMG’s Technology Risk team focus on the use of technology by our clients and help 1st , 2nd and 3rd line of defense in navigating the relevant technology risk and compliance matters in a strategic and tactical manner. Our professionals do this by leveraging our strong industry, IT control and technology focus and experience; deploying leading methodologies and tools; applying our objectivity; using a balanced approach to growth and risk; utilizing our comprehensive global breadth and local knowledge; and calling upon our deep understanding of relevant business, financial, and regulatory inter-dependencies.
KPMG is currently seeking both Senior Consultants and Consultants to join the team
Key Responsibilities

• Assist in planning activities, development of assessment program, and execution of IT-related internal audits and risk assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
• Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement managers and client management
• Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
• Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard KPMG and industry-accepted methodologies
• Assist in kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
  

• Plan and execute IT-related risk assessments with a focus on strategic, operational and regulatory/compliance related risks
• Lead kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
• Supervise consultants on engagements
  

• Minimum of 2 years of experience working within an IT internal audit, IT risk or IT compliance function as an internal employee or as part of a professional consultancy firm
• Bachelor's degree from an accredited college/university or equivalent work experience; CISA, PMP, CISSP or CRISC certification is preferred
• Familiarity leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, ITIL or regulatory compliance requirements
• Experience in implementation of internal control processes and programs for IT
• Proficiency in executing projects in accordance with leading practice project management principles
• Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level in order to communicate findings and recommendations to the clients and senior management team
  

• Well-structured career development and learning path, 1-to-1 coaching by our cybersecurity partners
• Access to various cyber security learning resources
• Wide exposure to working with leading financial institutions and multi-national corporations
• Continuous sponsorship and support on professional certificate development (i.e. Offensive Security, GIAC, CREST, etc.)
• Opportunities for secondment / exchange within KPMG Global network based on staff performance and preference
• One annual professional membership sponsorship on the approved list
• Work in a passionate team with blended cybersecurity and technology risk talents
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Professional Services

Referrals increase your chances of interviewing at KPMG China by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Senior Technology Risk Manager (Overseas Branch) role at Bank of China (Hong Kong)

2 years ago Be among the first 25 applicants

Join to apply for the Senior Technology Risk Manager (Overseas Branch) role at Bank of China (Hong Kong)

Get AI-powered advice on this job and more exclusive features.

• Responsible for the planning, management and daily operation of technology risk management
• Responsible for communicating and cooperating with internal working units to solve any issues related to information security/technology risk management of overseas branches and affilated organization.
• Conduct regular IT risk and compliance assessment in overseas branches and coordinate overseas branch to perform technology risk self-assessment.
• Collect key risk indicator information from overseas branches and perform anlaysis.
• Responsible for supervising overseas branch and affilatd organization on those issues arising from any independent assessment from regulatory inspections, external or internal audit, or other third parties and tracking their remediation activities
• Influence and drive oversea branches and affilated organization on technology risk management initiatives in alignment with group policies and standards
• Proactively communicate with overseas branches and affilated organization to understand update-to-date local regulatory requirement.
• Keep abreast with latest threats, vulnerabilties, mitigation and industry best practices
• Conduct technology risk and information security awareness training to staffs and technology risk managers in oversea branches
  
  

• Responsible for the planning, management and daily operation of technology risk management
• Responsible for communicating and cooperating with internal working units to solve any issues related to information security/technology risk management of overseas branches and affilated organization.
• Conduct regular IT risk and compliance assessment in overseas branches and coordinate overseas branch to perform technology risk self-assessment.
• Collect key risk indicator information from overseas branches and perform anlaysis.
• Responsible for supervising overseas branch and affilatd organization on those issues arising from any independent assessment from regulatory inspections, external or internal audit, or other third parties and tracking their remediation activities
• Influence and drive oversea branches and affilated organization on technology risk management initiatives in alignment with group policies and standards
• Proactively communicate with overseas branches and affilated organization to understand update-to-date local regulatory requirement.
• Keep abreast with latest threats, vulnerabilties, mitigation and industry best practices
• Conduct technology risk and information security awareness training to staffs and technology risk managers in oversea branches
  
  

• Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
• Over 6 years of experience in IT security, technology risk, risk management, system development management, compliance or IT audit function, gained from other sizable financial institutions. Candidate with less experience will be considered as Analyst
• Demonstrated experience working with the regulators in the region, articulate in local regulations and laws pertaining to IT Risk would be an advantage
• Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM) , Certified in Risk and Information Systems Control (CRISC) , Certified Internal Auditors (CIA) is preferable.
• Good command of written and spoken English with Mandarin is preferable.
• Flexibility in traveling
• Independent and strong self-initiative.
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries Banking, Capital Markets, and Financial Services

Referrals increase your chances of interviewing at Bank of China (Hong Kong) by 2x

Get notified about new Senior Risk Manager jobs in Hong Kong SAR .

Eastern District, Hong Kong SAR 2 weeks ago

Hong Kong, Hong Kong SAR HK$70,000.00-HK$0,000.00 1 week ago

Wan Chai District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 18 hours ago

Sha Tin District, Hong Kong SAR 1 day ago

Kwun Tong District, Hong Kong SAR 4 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Senior Technology Risk Manager (Overseas Branch) role at Bank of China (Hong Kong)

2 years ago Be among the first 25 applicants

Join to apply for the Senior Technology Risk Manager (Overseas Branch) role at Bank of China (Hong Kong)

Get AI-powered advice on this job and more exclusive features.

• Responsible for the planning, management and daily operation of technology risk management
• Responsible for communicating and cooperating with internal working units to solve any issues related to information security/technology risk management of overseas branches and affilated organization.
• Conduct regular IT risk and compliance assessment in overseas branches and coordinate overseas branch to perform technology risk self-assessment.
• Collect key risk indicator information from overseas branches and perform anlaysis.
• Responsible for supervising overseas branch and affilatd organization on those issues arising from any independent assessment from regulatory inspections, external or internal audit, or other third parties and tracking their remediation activities
• Influence and drive oversea branches and affilated organization on technology risk management initiatives in alignment with group policies and standards
• Proactively communicate with overseas branches and affilated organization to understand update-to-date local regulatory requirement.
• Keep abreast with latest threats, vulnerabilties, mitigation and industry best practices
• Conduct technology risk and information security awareness training to staffs and technology risk managers in oversea branches
  

• Responsible for the planning, management and daily operation of technology risk management
• Responsible for communicating and cooperating with internal working units to solve any issues related to information security/technology risk management of overseas branches and affilated organization.
• Conduct regular IT risk and compliance assessment in overseas branches and coordinate overseas branch to perform technology risk self-assessment.
• Collect key risk indicator information from overseas branches and perform anlaysis.
• Responsible for supervising overseas branch and affilatd organization on those issues arising from any independent assessment from regulatory inspections, external or internal audit, or other third parties and tracking their remediation activities
• Influence and drive oversea branches and affilated organization on technology risk management initiatives in alignment with group policies and standards
• Proactively communicate with overseas branches and affilated organization to understand update-to-date local regulatory requirement.
• Keep abreast with latest threats, vulnerabilties, mitigation and industry best practices
• Conduct technology risk and information security awareness training to staffs and technology risk managers in oversea branches
  

• Degree holder in Computer Science or other degree majoring in Information Systems, or related discipline.
• Over 6 years of experience in IT security, technology risk, risk management, system development management, compliance or IT audit function, gained from other sizable financial institutions. Candidate with less experience will be considered as Analyst
• Demonstrated experience working with the regulators in the region, articulate in local regulations and laws pertaining to IT Risk would be an advantage
• Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM) , Certified in Risk and Information Systems Control (CRISC) , Certified Internal Auditors (CIA) is preferable.
• Good command of written and spoken English with Mandarin is preferable.
• Flexibility in traveling
• Independent and strong self-initiative.
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries Banking, Capital Markets, and Financial Services

Referrals increase your chances of interviewing at Bank of China (Hong Kong) by 2x

Get notified about new Senior Risk Manager jobs in Hong Kong SAR .

Eastern District, Hong Kong SAR 2 weeks ago

Hong Kong, Hong Kong SAR HK$70,000.00-HK$0,000.00 1 week ago

Wan Chai District, Hong Kong SAR 1 week ago

Kowloon City District, Hong Kong SAR 18 hours ago

Sha Tin District, Hong Kong SAR 1 day ago

Kwun Tong District, Hong Kong SAR 4 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.