Data Protection and Business Risk and Control Management Manager - HSBC Insurance
HSBC Group
Hong Kong, China


Some careers grow faster than others. If you’re looking for a career that will give you plenty of opportunities to develop, join HSBC and your future will be rich with potential.

HSBC Insurance provides a comprehensive range of life products and services to suit the every possible need of our personal, commercial, corporate, institutional and private banking customers.

As a leader in new life insurance business and Hong Kong’s largest administrator of retirement schemes, the business serves this diverse client portfolio from its management offices in Hong Kong and through a wide network of banking, consumer finance and insurance subsidiaries throughout the Asia-

Pacific region. We are currently seeking a high caliber professional to join our team as Data Protection and Business Risk and Control Management Manager.

Principal responsibilities

  • Set policies and procedures to ensure the regulatory and internal requirements of Personal Data Privacy Ordinance, PDPO, are addressed for all business and functions of Hong Kong Insurance.
  • Ensure that data privacy risks are managed effectively by adhering to Group Risk guidance and implementing and monitoring strategies to minimize losses.
  • Improve the control environment by establishing and implementing control improvement and standardization programmes.
  • Provide effective governance, challenge and reporting of data privacy key risks and controls.
  • Ensure that Hong Kong Insurance Management fully considers and effectively manages the risk and control environment to comply with PDPO.
  • Assess and report on the adequacy of the control environment regarding the compliance of PDPO by testing the controls designed to mitigate risks are appropriate and functioning effectively.
  • Demonstrates compliance with all relevant external and internal rules including Group standards, manuals and policies;
  • and adheres to the defined work practices, internal controls and risk management standards associated with the role.

  • Liaison with Group Insurance Management, the country businesses and other functions to ensure that all systems, processes and procedural changes in relation to PDPO are implemented in a timely manner.
  • Act as point of contact with regulators and other parties on data privacy matters and engagements.
  • Drive staff awareness of PDPO by developing appropriate training and awareness programs, conducting regular face to face workshops for all staff required to handle personal data and arranging regular presentations by external subject matter experts.
  • Promote the Insurance's data privacy compliance image by attending industry wide forums and activities.
  • Ensure that Management is kept abreast of developments and risks in the area of Data Protection and Security.
  • Develop and maintain PDPO related policies and procedures, including internal and external reporting mechanism of any PDPO incidents, and monitor compliance.
  • Ensure that operations arising from customer complaints, data access requests and data privacy enquiries are dealt with in a timely and cost effective manner.
  • Requirements

  • Undergraduate or post graduate degree level in Business, Finance, Business Informatics or related field.
  • Solid understanding of the Insurance business activities, and relevant working experience as a privacy consultant, part of privacy office, or in house legal or compliance department in advising business on data privacy requirements, risks and in designing or developing proactive solutions.
  • Deep technical knowledge of data privacy regulations.
  • Ability to engage and partner with a range of stakeholders across a matrix organization.
  • Strong managerial, communication, analytical, organizational and decision making skills.
  • Highly self motivated with the capability to work independently.
  • Creative and flexible, able to work in a fast paced environment.
  • You’ll achieve more when you join HSBC. Candidate with less relevant experience or skills may be offered a lower Global Career Band than stated above.

    HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment.

    Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

    通過按一下 "繼續 ", 您同意 neuvoo 收集並處理您在本表單中提供的個人資料, 以創建 neuvoo 帳戶並根據我們的 隱私政策 訂閱您的電子郵件通知。您可以在任何時候撤回您的同意, 通過以下 這些步驟