With strong background in both IT and Security areas. You'll use this dual expertise as you work closely with Infrastructure & Operations, and Development team on China Cloud Program to support from Cybersecurity perspective of Cloud First Strategy. You will work with Global security team for security management tools deployment to comply with member firm standard.
Work you'll do Accountabilities – Key Result Areas
Work as a security SME to address the security concerns in China Cloud Program. Work with global security team to assess the impacted CAP projects (AIP, SIEM, ARM, PAM, etc.) and localize the CAP services in China. Support Cloud First strategy from Cybersecurity perspective, work with Development and Infrastructure team members for infrastructure and application migration to cloud. Contribute to ensure compliance with corporate information security policies, standards and practices as well as liaise with relevant stakeholders, including contractors and vendors. Security and compliance project management.
IT team, global security team, external security auditor, internal auditor. A fit for the role? Let's talk about you. Experience / Qualification Requirements
Certified Information Systems Security Professional (CISSP) or Certified Information Security Auditor/Manager (CISA/CISM) certification is preferred. Bachelor's degree or above required, preferably in Information security, IT or Management field 5 + years' related security and risk compliance experience. Managerial Competencies
Strong self-motivation, pro-active, good communication and analytical skills. Ability to competently articulate risk-based Information security topics to the management. Good people skills to work with business users and technical teams, independently work with less supervision and under pressure A desire to challenge the status quo and to drive for continuous process improvement. Exceptional written and oral presentation skills, both English and Mandarin. Technical Competencies
Expertise in Information security, risk management, corporate governance and overall business objectives. Knowledge and experience in networking, system and cybersecurity administration and best practices. Exposure on cloud platform, cloud security industry best practices would be a plus.Strong analytical skills with a keen attention to detail.