• Develop and translate technology risk and information security frameworks and guidelines according to SFC and company policies into practical action plan.

• Drive the implementation of technology risk policies and procedures to IT teams.

• Conduct periodic risk and control assessments from technology risk perspective.

• Lead IT's BCP arrangement and cooperate with the company's BCP workgroup for BCP needs.

• Lead and conduct forensic investigation for Cybersecurity and IT incidents when required. 

• Holder of Bachelors Degree or above in IT/Computer Science /Account related disciplines 

• Certified in professional certifications, e.g.: CISA, CISM, CRISC, CISSP, etc..

• 12+ years' working experience in InfoSec/TRM/IT Audit

• Knowledge with SFC requirements on Technology Risk

• With sound knowledge of IT infrastructure, network security, SDLC, 3rd party risk and etc.

• Able to communicate in Chinese & English

We offer an attractive remuneration package and fringe benefits to the right candidate. Interested applicants please send detailed resume stating present and expected salaries, as well as date of availability, by clicking "Apply" or by sending it to hr@gtjas.com.hk.

(Data collected will be kept strictly confidential and used for recruitment purpose only.)