Hot Job from InfoTech

			Hot Jobs Full List
			www.infotech.com.hk


Job Key No	39536
Job Title/ Category	Information Security and Technology Risk Senior Manager
Number Of Vacancy	1
Relevant Field	Technical Support
Nature	Contract
Deadline	15 Jun 2026
Contract Period	12 months
Payroll	under InfoTech
Employer Business	statutory body
Location Base	Kwun Tong
Work Outside Current Location	N/A
Monthly Salary Range HK$	N/A - N/A
Duties	- Serve contract assignments under InfoTech's headcount, full-time second to a statutory body; - Execute and refine the monitoring framework and mechanisms related to technology risks and information security for the eMPF platform, which is developed and operated by a third-party delivery partner (the “Delivery Partner”); - Implement and enhance the governance framework to ensure compliance with regulatory requirements and best practices, particularly in benchmarking the Delivery Partner’s deliverables; - Lead and drive security risk assessment and security tests; - Ensure policies and procedures are properly enforced and monitored to achieve governance objectives; - Collaborate with the Delivery Partner to review deliverables, assessing completeness and alignment with market standards, including security measures and technology risk management frameworks; - Oversee the Delivery Partner’s technology risk and information security work, including developing reporting metrics, risk assessments, incident tracking, and ensuring timely remediation of identified risks; - Oversee security risk assessments, red team tests, and compliance assessments related to the Platform; - Provide regular and ad hoc reports to management on progress and issues; - Collaborate with internal teams and the Delivery Partner on root cause analysis and remediation plan monitoring.
Yrs of Total Post-Quali Exp	10.0
Yrs of Relevant Exp	2.0
Requirements	- Degree holder in Computer Science / Information Security or related disciplines; - Minimum 10 years of relevant experience in multiple areas including technology risk, information security, cyber security, regulatory compliance in a financial services and/or public sector environment with 2+ years at managerial level; - Relevant security management and IT audit qualifications, e.g. CISM, CISSP, CISA, CRISC or equivalent; - Extensive knowledge on information security and technology risk management principles and best practices; - Hands-on experience in configuring security devices, SIEM monitoring, penetration test, red team security test, risk controls implementation is preferred; - Good knowledge of PDPO, ISO 27001 and general compliance as well as infrastructure and applications; - Hands-on experience in development and application of risk management tools, e.g. KRI, risk controls assessments, risk register, etc.; - Drive, plan and execute security projects / assessments independently with minimal supervision; - Good vendor management experience for large-scale projects; - Proactive, responsible, strong sense of work ownership, good problem solving, communication and interpersonal skills, independent and yet a good team player with strong market sense and analytical thinking; - Can work under pressure and meet tight schedule; and - Good command of both spoken and written Chinese and English.
Last Update	03 Jun 2026
Apply To	itcareer@infotech.com.hk
Direct Line	2836 0363

This is an online active job list, but not an exhausted list. Top senior, sensitive, confidential and inactive jobs are not listed here. Please read the Disclaimer and Information Collection Statement. Copyright 1990-2024. InfoTech Services (Hong Kong) Limited. All rights reserved.