Cybersecurity Specialist
Hong Kong

Job purpose

The Cybersecurity Specialist is responsible for :

  • Implementation of the Cybersecurity strategy and policies under the coordination of the Cybersecurity Officer
  • Reporting on Cybersecurity compliance across all regions
  • Reporting the IT operations compliance based on the related security requirements
  • Understanding local & regional regulations and the organizations adherence / compliance.
  • Cybersecurity communication, active participation in audits, awareness training for all employees
  • Analyzing risks and reporting to the Cybersecurity officer
  • Providing Level 2 / 3 cybersecurity technical support
  • Main roles and responsibilities

    Cybersecurity policies, standards and procedures

  • Driving the implementation of the Group Cybersecurity strategy, policies, standards and procedures
  • Information security policy and data protection policy implementation
  • Contributing to the implementation of Business Continuity and Disaster Recovery Plans by collaborating with stakeholders within and the organization.
  • Deliver actions to ensure the alignment between the defined procedures and security management tools and the security objectives
  • Contributing to the communication of security policies, standards and procedures to internal and external stakeholders
  • Security compliance control and reporting

  • Analyzing SOC & compliance reports and communicate remediation plans
  • Rolling out IT Operations security risk evaluation and impact analysis
  • Escalating security incidents to Cybersecurity leader, management team and related business / subsidiaries
  • Contributing to internal and external security audits
  • Coordination and Cybersecurity monitoring

  • Coordinating and following up remediation plans and actions with key indicators
  • Monitoring internal and external events related reported in Cybersecurity literature
  • Connection with local Cybersecurity policies, requirements and regulations

  • Understanding the local regulations, requirements and regulations concerning security, data protection and data privacy
  • Communication, training & awareness

  • Responsible for the content of Cybersecurity communications and distribution to all stakeholders (internal and external)
  • Track and report on the effectiveness of Cybersecurity communications, training and awareness programs.
  • Technology watching

  • Keeping up to date with security evolutions, major trends and best practices on technology, solutions and regulations
  • Working closely with security vendors to understand new types of cyber-crime, computer malware and vulnerabilities
  • Cybersecurity technical support

  • Contributing to the resolution of critical incidents, crisis management and mitigation plans
  • Providing level 2 / 3 Cybersecurity technical support
  • Scope

  • Team management : Individual contributor
  • Key internal stakeholders : All the IT Teams
  • Key external stakeholders : Vendors
  • Budget to manage : Not relevant
  • Availability to travel : Occasionally
  • Profile required

  • Education required : Bachelor's degree (engineering or business school / university specialized of information security and / or telecom, information system and network security, security, information encryption and coding, )
  • Certification : CISSP or alike (e.g. GIAC, CEH or CISA)
  • Experience / Background : 5 + years of experience in a related areaMust have experience dealing with various levels within companyProven track record of institutionalizing leading-practice methodologies and processesLanguage required : Fluent in English
  • Soft skills : Curious about security and our businessPractice great communicationsDesire to become a trusted advisorBe kind to all our customersKeep the friction low when engaging with othersAlways act as a team
  • Job Posting End Date :

    Target Hire Date : 2020-08-19-07 : 00

    2020-08-19-07 : 00


    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    通過點擊“持續”,我允許neuvoo同意處理我的數據並向我發送電子郵件提醒,詳見neuvoo的 隱私政策 。我可以隨時撤回我的同意或退訂。