information security specialist.

We are seeking a quick-learning and proactive Information Security Specialist to support Asia GRM-CRIS team on China regulatory work and global/regional driven information security program.

about the job.

• Act as a domain expert in information security; work closely with IT and business in various functions to enforce information security policies and compliance.
• Coordinate and guide the branch departments in responding to regulatory requirements and gap analysis for China Branches (e.g. NFRA, PBOC, CAC).
• Review the service contracts and advise on Information security clauses.
• Conduct security risk assessments on new initiatives in accordance with bank information security policies and local regulatory requirements.
• Coordinate the implementation of global and regional driven information security program in China.
• Deliver Information Security training and awareness initiatives.
• Prepare regular branch management reports.
• Provide information security guidance and advice for inquires.
• Undertake such other ad-hoc duties as required from time to time which are commensurate with the position.

skills and experience required.

• Minimum 3 years’ experience in similar role, preferable in financial industry or consultancy.
• Knowledge of China laws and regulatory requirements of cybersecurity and data security with an understanding of the financial industry.
• Experience in regulation gap analysis, risk assessment, regulatory questionnaire and report.
• Good collaboration and communication skills to coordinate IT and business departments to implement new regulatory requirements and information security programs. 
• Good oral and written communication skills (English and Chinese).