Responsibilities

📍Orchestrate, implement, and manage the organization's security assurance framework, aligning with industry best practices 📍Collaborate effectively with internal and external stakeholders to perform assessments of critical systems and enhance security 📍Identify risks along with appropriate mitigation requirements, develop and analyze secure solutions (covering technical, physical, procedural, and personnel controls), and assess compliance with internal and external standards and regulations 📍Maintain comprehensive documentation encompassing all aspects of security assurance activities - including risk discovery, control implementation, and effect measurement 📍Compile and present detailed reports concerning security assurance activities to pertinent stakeholders, including the senior leadership team 📍Stay alert to emerging trends and advancements within the security assurance spectrum

Requirements

📍Bachelor's degree in Computer Science, Information Security, or a related field. A Master's degree is a plus 📍3+ years of experience in the IT security, technology risk, or IT audit field. 📍Prior project management experience will be regarded as a significant advantage 📍Holder of CISSP / CISA / CISM / CRISC certification or equivalent is preferred 📍A proficient command of English with excellent communication skills is mandatory. 📍Proficiency in Chinese will be a considerable advantage 📍Profound understanding of information security principles and practices, including security risk assessment standards, risk assessment methodologies, and newly developed industry tools 📍Demonstrable ability to communicate effectively with a diverse group of stakeholders, including senior management, regulatory bodies, and auditors 📍Acute attention to detail, matched with solid analytical and interpersonal skills 📍Ability to work independently and thrive under pressure 📍Experience in leading and managing a global team and projects