IT Security Manager

China Everbright Bank
Full Time
Senior (6-10 years)
Bachelor
English, Cantonese, Mandarin (Putonghua)

Job Description

IT Security Manager

Location: Admiralty

Job Responsibilities:

  • Identify, evaluate and report on information security risks in a manner that meets the company’s legal, regulatory and contractual requirements and recommend mitigating measures;
  • Conduct and report on IT audit assignments through the assessment of risk and evaluation of internal controls;
  • Carry out special investigations and ad hoc assignments when required;
  • Perform security assessments on both internal and third party;
  • Support company initiatives to ensure information assets are adequately protected;
  • Support the development of the information security operations and forensics capabilities within the company;
  • Act as a specialist performing duties requiring thorough knowledge of Information Security as well as the company Information Security policies, standards and procedures.

Job Requirements:

  • Degree holder in Information Technology, Computer Studies or related disciplines in IT field; with over 6 years in banking industry;
  • Preferably with MSCE/ MCITP/ CCNA/ CCNP /CISA/ CISSP;
  • At least 8 years’ experience in information security administration and risk management in corporate environments;
  • Experience performing security audits and/or vulnerability assessments;
  • Solid understanding and knowledge of information security terminology, technology, and concepts;
  • Extensive experience with ISO 27K standards, CoBiT, ITIL, CMM or similar frameworks is required;
  • Familiar with z/OS, AIX, Windows and Network security;
  • Good knowledge of banking applications and IT related regulatory requirements;
  • Able to work under pressure and can work independently;
  • Proficient in written and spoken English and Chinese (including Mandarin); 

Interested candidates please apply in full resume with earliest availability, contact number, current & expected salary to HR Department: [email redacted, apply via Jobable] .

Personal data provided will be used for recruitment and related purposes, strictly in accordance with our Personal Data Policy for Applicants for Employment, a copy of which is available on request. Applicants who are not contacted within 6 weeks may consider your applications unsuccessful and the personal data collected will be destroyed after six months.


Professional Qualifications

  • Cisco Certified Network Professional (CCNP)
  • Certified Information System Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • Cisco Certified Network Associate (CCNA)
  • Microsoft Certified IT Professional (MCITP )
  • Microsoft Certified Systems Engineer (MCSE)
  • ITIL Practitioner Level

Technical Skills

  • Audit
  • COBIT
  • IBM AIX
  • Information Security
  • Information Technology Infrastructure Library (ITIL)
  • Internal Control
  • ISO
  • IT Audit
  • Network Security