Job Summary To support the Information Security Team on IT related initiatives and ensure the IT controls are robust in AIA HK and Macau. Responsibilities · Responsible for network & external connectivity review. · Continuously monitor cyber hygiene issue such as server check-in status and follow up vulnerability remediation progress. · Maintain the compliance rate of security agent installation on endpoints. · Continuously monitor server check-in status. Governance and monitor the processes of IT asset inventories management, e.g. server, firewall, proxy policy change etc. · Responsible for third party security assessment and review. Engage external assessor to complete necessary assessment according to corporate standard and process. Maintain issue trackers and follow up with stakeholders timely. · Conduct of assessment on different infrastructure, systems and applications and recommend improvement plans · Keep abreast with updated information security policies, standards and guidelines and implementing it to ensure high levels of integrity, confidentiality and availability of the IT resources · Lead the implementation of Information Security projects and processes Requirements · University degree in Computer Science, Information System or related disciplines is preferred · 2 years’ experience relating to Information Security management or relevant control function in financial field · Broad security and technology knowledge including firewalls, networking, infrastructure and vulnerability management. · Knowledge of ISMS, ISO27000 series, OWASP Top 10 and other major information security frameworks · Familiarize with technology risk management and regulatory requirements · Sound project management experience · Previous IT risk control or audit experience and project management will be an advantage · Able to work independently, handle and manage tasks with tight deadlines · Good presentation and communication skills · Proficiency in both Chinese and English · Proficiency in Microsoft Excel and able to use common formulars.
