Security Delivery Project Executive
Location: Hong KongSecurity Delivery Project Executive
The consultant in the global practice should be advisors and pragmatic management consultants that can speak to the security landscape with senior members of a client management or executive teams. The consultant should have depth of knowledge and experience in one of the core security domains (Security Strategy Risk and Compliance; IAM; SOC Operations; Application and Data; Infrastructure Endpoint and Mobile Security) but should be able to speak to the breadth of the landscape as well. The consultants will provide subject matter expertise in the form of workshops, and consulting engagements, which assess a client’s security capabilities, which could be in the policy, process, technology or organizational areas, identify gaps and recommend cost effective best practices to reduce client risk and increase their handle on security risk.
Description & Desired skills:
•Experience in leading regulatory assessment projects, assisting organizations of regulated industries to enhance regulatory compliance and governance, leading internal audits as well as delivering IT advisory projects
•Experience in leading regulatory assessments on key IT projects including, IT outsourcing, data centre re-location, etc with reference to relevant guidelines set out by the regulators such as HKMA and MAS. Led a privacy governance assessment
•Experience in leading a project team to conduct quality assurance on outsourcing project
•The ability to lead large groups and be a primary facilitator
•Strong written skills
•Comfortable working in a project based / client serving model
•Ability to lead and shape client expectations
•Help drive pursuits and engage in complex deals, matching outcomes to expectations
•Ability to work easily with diverse and dynamic teams
•Ability to work in a matrix management model
Security Domain Skills
•Depth of knowledge in one or more of the core security domains: SSRC/GRC, IAM, SOC Operations, Application and Data, or Infrastructure End
•An understand of contemporary and legacy security technologies used within a particular domain
(e.g. Firewalls, IDS, Firewalls, SIEM)
•Basic understanding of compliance issues (ISO 27001, SSAE 16, COBIT)
The successful consultant will be internal advisor to other IBM consultants and client teams. The
consultant will assist in pre-sales, sales, closure, and then organizing the delivery of security
consulting services with local teams.
•Experience working across diverse teams to facilitate solutions
•Experience working with Security practitioners
•Experience in working international deployment roles
•At least 10 years experience in management consulting and systems integration or Managed
Security Services in a top tier professional services firm
•At least 10 years experience in working with security consulting teams
•At least 8 years experience in management consulting and systems integration or Managed
Security Services in a top tier professional services firm.
•At least 8 years experience in projects related to the core security domain.
English & Cantonese: Fluent
- Quality Assurance