Job Reference : ZJ00005176

Manager, Information Security - Insurance(FI)

Job Reference : ZJ00005176
  • 4 - 6 Years
  • Salary Negotiable
  • Permanent / Full Time
  • Not Specified
  • Insurance / Pension Funding
  • Insurance
  • Five-day work week / Medical insurance / Performance bonus

    Job Description

    Responsibilities:

    • Take lead and drive the SIEM process and drill
    • Lead subordinate(s) to follow up all security related issues in the day-to-day operations and recommend security projects and enhancement where appropriate
    • Monitor the daily security issues and ensure information security exposures are identified and addressed. Report potential risks and incidents happened to management promptly
    • Evaluate, introduce, implement and monitor new solutions on information security to protect the company networks, systems and data, including contingency plan of system security services
    • Ensure all Information Security related documentation (e.g. Security Policy) are completed on time, with good quality and is up-to-date at all time. Ensure the corresponding procedures are strictly adhered to by all staff
    • Coordinate with HR, introduce IT Security Policy to new staff in the Orientation Program, as well as arrange security awareness programs where necessary
    • Ensure the services from external service providers and hardware/software vendors on information security related projects are prompt and with high quality
    • Ensure all periodic reporting on information security issues are generated to IT management on time
    • Responsible for budget recommendation on network security software and equipment and the maintenance cost
    • Assist to negotiate hardware/software acquisition on information security related projects in the best possible way
    • Responsible to ensure user support and training is organized where appropriate


    Requirements

    Requirements:

    • University or Polytechnic graduate or equivalent, with a major in Computer science / studies
    • Minimum 7 years’ experience in leading IT functions, of which at least 3 years of experience in information security, preferably in financial service industry (at least 2 years of experience in People Management)
    • Professional designation in Information Security (e.g. CISSP, CISA or CISM) is preferred
    • Hands on experience in managing information security projects and solutions
    • Knowledge in industry best practices such as ITIL v3 Foundation certification and ISO27001 is an advantage
    • Good leadership skills
    • Good communication, presentation and interpersonal skills
    • Good command of English and Chinese