Job Title
IT Risk and Security Manager
Location
Hong Kong
Deadline
05/01/2023

Job Description

You are expected to coordinate IT project activities to ensure that project objectives are accomplished within the approved timeline and budget based on business priorities.

 

Key Responsibilities

  • Conduct IT risk and security assessments to identify security risks and follow up mitigation actions
  • Provide and advisory role to IT and the business to specify pragmatic security requirements
  • Participate in audits and provide advisory to re-mediate the findings
  • Evaluate and perform benefit analysis for security solutions and products
  • Report to senior management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance
  • Assist in the development of security architecture, security policies, principles, and standards
  • Provide SME support in the resolution of reported security incidents and provide leadership where required
  • Maintain up-to-date understanding of the latest threats, vulnerabilities, mitigation, and industry best practices
  • Develop security awareness material and conduct security awareness training to Greater Bay Airlines staff
  • Develop scope of work for engaged suppliers, ensure deliverables met business objectives

 

Requirements

  • Hong Kong permanent resident status
  • University graduate in IT, Engineering, Mathematics or equivalent
  • Certificate in information security disciplines such as CISM, CISA, CISSP or equivalent
  • 4 years in IT security field
  • Experience with common information security management frameworks, such as ISO 27001, NIST, CobiT, ITIL, PCI, is an asset
  • Experience in gap assessment, data privacy regulatory compliance assessment and audit, and experience with implementation of security technologies such as: DLP, SIEM, IPS, Antimalware, Vulnerability Management, Web Proxy, Advance Threat Protection tools & technologies, PKI and cloud security is preferred but not mandatory
  • Airline industry experience is preferred but not mandatory 
  • Fully COVID-19 vaccinated, consideration will be given to those who are unable to get vaccinated for valid medical reasons

 

We offer a competitive compensation package to the successful candidate. Interested parties, please click “Apply Now” to submit your application.

 

Apply now

Stay Connected to Stay Tuned to Our Opportunities on Offer!

Can’t find your ideal position at GBA now? Why not join our Talent Connect by filling in the Registration Form here? By agreeing to share your profile with us you’ll receive information on future job opportunities. You are also welcome to submit us your application if you find a suitable opening on our website in future.

Register now

Personal Information Collection Statement

Please read the following:

  1. The personal data provided by you will be used by the Greater Bay Airlines Company Limited (the Company) to assess your suitability for the position you are applying for; to verify information provided by you; and, if successful, to facilitate the determination of your remuneration and benefits package.
  2. The completion of all items indicated on the employment application form is obligatory for the further processing of your application.
  3. Your personal data held by the Company will be kept strictly confidential; and will only be disclosed to the authorised persons within the Company for processing your application and/or may be transferred and disclosed to third party service providers including but not limited to the recruitment agencies to assist with the Company’s human resources functions.
  4. Under the Personal Data (Privacy) Ordinance, you have the right to request access to, and to request correction of, your personal data held by the Company. Such request should be made in writing and addressed to:  
    Personal Data Officer
    Human Resources Department
    Greater Bay Airlines Company Limited
    12/Floor, One Citygate, 20 Tat Tung Road,
    Tung Chung, Lantau,
    Hong Kong        
  5. The Company has the right to charge a reasonable fee for the costs related to your request for data access, as permitted under the Personal Data (Privacy) Ordinance.
  6. If you have not been contacted by the Company within 8 weeks of the job posting date, you may consider your application unsuccessful. Your personal data will be kept for a period of 12 months from the job posting date, and will be destroyed thereafter.
  7. If you are invited to attend an interview or a test but are not further contacted by the Company within 8 weeks of your attendance of the interview or test, you may consider your application unsuccessful. Your application and test paper (if applicable) will be kept for 12 months from the date of the last interview or test attended by you, and will be destroyed thereafter.
  8. If your application for employment is successful, your personal data will be transferred to your personal file, to be used by the Company for employment purpose.