Risk & Compliance Manger (Information Security)

The Company

Top-tier life insurance.

The role

• Assist APAC Business Information Security Officers in performing various assessments using a global standard risk-based approach, including cloud security assessments, third-party vendor assessments, business/IT application assessments (including pre- and post-implementation reviews), and regulatory assessments.
• Review remediation actions, analyze and manage them, and conduct themed security reviews.
• Maintain Information Security, Risk & Compliance frameworks, policies, and standards for the APAC region.
• Provide governance over and support APAC BISOs in coordinating regional and local information security gap remediation.
• Analyze common themes and drive regional remediation activities.
• Advise APAC BISOs and stakeholders on information security policy compliance requirements and provide advice, governance, and support in information security policy exception and risk acceptance processes.
• Work closely with the Information Security Governance team to ensure global requirements are communicated to APAC stakeholders and APAC requirements are considered in global information security compliance projects.
• Support global information security governance initiatives in the APAC region.

Your profile

• University graduate in computer science, information technology, or a related field.
• Minimum 5 years of relevant experience in information security or IT risk management, preferably in an MNC environment or insurance industry.
• Certification of CISA, CRISC, CISSP, and/or CISM is desirable
• IT audit experience is an advantage.
• Good understanding of IT security, architectures, and compliance controls.
• Basic knowledge of holistic IT technologies and processes such as operating systems, databases, networking, web/application, change management, SDLC, disaster recovery, monitoring, and help desk, among others.
• Excellent communication skills in English and the ability to communicate security-related concepts to all levels of stakeholders.

Apply Today

To apply online (Word attachment only), please click the 'Apply' button. Please note that only short-listed candidates will be contacted.

By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: https://www.roberthalf.com.hk/privacy-statement. Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.