Information Security Officer

Job Description

Foreign Banking

Please contact Morgan Mckinley - Fintech Consultant - Agnes YANG
Wc: aviyayang

Job purpose:
This position is responsible for managing local aspects of Information Security and Data Protection of China Branches.

Key activities
Act as a domain expert and trusted partner in information security and Data protection; work closely with Information Technology and business in various functions to enforce information security and Data protection policies and standards.
Coordinate and guide branch management teams in responding to regulatory requirements and gap analysis for China Branches (e.g. CBIRC, CAC)
Co-ordinate, support audit engagement and response to the inquiries from regulator and auditor and monitor the resolution of audit findings as well as ensure agreed action plans are completed as planned.
Perform Security compliance check to ensure compliance to bank information security policies.
Support regional driven information security and Data protection program.
Support regional Information Security and data protection training and awareness initiatives and share best IT security best practices as well as adhere to and be able to demonstrate adherence to internal control.
Regular report to China branch management.
Undertake such other ad-hoc duties as may be required from time to time which are commensurate with the position.

Formal education:
University or college degree or comparable
Security related certification preferred

Specialist knowledge (work experience, further qualification):
Minimum 3 years' experience in similar role in financial services industry or consultancy
Knowledge of China regulatory requirements with a strong understanding of the financial industry
Ability to perform gap analysis of policies and processes against new regulatory requirements and guidelines.
Good analytical skills, with the ability to breakdown complex problems into actionable and understandable steps.
Strong oral and written communication skills (English and Chinese)
Strong stakeholder management skills