Manager (Cyber Resilience)

Hong Kong Interbank Clearing Limited (hereinafter referred to as “the Company”) is a private organization jointly owned by the Hong Kong Monetary Authority (HKMA) and The Hong Kong Association of Banks. The Company’s key objective is to develop and operate a safe and efficient multi-currency and multi-dimensional financial infrastructure in Hong Kong for: large-value interbank fund transfers denominated in HKD, USD, Euro and RMB; interbank money settlement of equity and debt securities transactions in Hong Kong via the linkages with the Hong Kong Securities Clearing Company Limited and the HKMA’s Central Moneymarkets Unit (CMU) system; small-value interbank fund transfers denominated in HKD and RMB via the HKD and RMB Faster Payment System; and interbank clearing and/or money settlement of retail payments, such as paper cheques, autocredits, credit card payments, etc. in Hong Kong. The Company is also the operator of the HKMA’s CMU system. Apart from interbank clearing-and-settlement services, the Company and its subsidiaries also support the HKMA and the financial industry to foster the development of the financial technology (“FinTech”) ecosystem in Hong Kong. Major Responsibilities Manage the company’s cyber security posture Initiate and develop mitigation actions for any identified improvement areas or adverse trends Establish process for cyber threat intelligence collection, analysis and dissemination process Conduct cyber resilience related assessments for the company and provide input to risk metrics reporting Coordinate and develop cyber resilience strategy for the company, provide interpretation of cyber resilience controls and regulatory requirements, and recommend industry practices in implementation Provide cyber security advisory services on architectural design for IT projects Coordination with relevant parties for preparing cyber security budget Manage the Security Operations Center (SOC) Liaise with internal and external auditors in performing cyber resilience assessment and intelligence‑led cyber attack simulation testing (iCAST) Liaise with regulators on cyber security matters Perform any other ad‑hoc duties or projects as assigned Requirements University degree preferably in information technology, cyber security, computer science or related discipline Minimum 6 years of experience in cyber security, technology risk management and/or auditing Good understanding of technology risk management and cyber security best practices, with broad knowledge of Fintech, data privacy and/or industry practices Familiar with ISO27001, CSA STAR, and HKMA CFI 2.0 framework, technology risk management and cyber security related guidelines. CISA, CISM, CDPSE, CRISC, CISSP, CEH, CCSP and/or other cyber resilience related certifications preferred Team player with sound interpersonal and communication skills Excellent problem solving and analytical skills Good command of written and spoken English and Chinese How to Apply Interested parties please send your curriculum vitae stating your current and expected salaries, and contact phone number to the Human Resources Division, Unit B, 25/F, MG Tower, 133 Hoi Bun Road, Kwun Tong, Kowloon or by clicking the “Apply Now” button below. All applications and personal information collected will be treated in strict confidence and only be used for the purpose of recruitment and selection. The information collected will be accessed by our authorized personnel only. Those applicants not contacted by the Human Resources Division within two months from their application date should consider their applications filed for future reference which will be retained for one year for possible future job matching, and destroyed after the expiry of one year. #J-18808-Ljbffr