Provide Information Security and Data Protection to Asia branches in line with global standards and within local regulatory and legal stipulations. Management and development of the Information Security Asia, setting and communicating its strategy in line with the global strategy of the group.
Build a strong relationship with internal clients, demonstrating a thorough understanding of their business and how Information Security can add value to it.
Contribute to the strategic decisions of the business through the introduction and implementation of appropriate systems and processes that enhance the information security position of Asia and satisfy regulatory requirements.
Provide Information Security and Data Protection to Asia branches in line with global standards and within local regulatory and legal stipulations
Ensure that any regional policies and procedures, and their application, reflect the risk appetite and requirements of the firm.
Be the regional point of contact for Operational Risk, Legal, Compliance and Audit departments in respect of Information Security and Data Protection issues. Report relevant issues to the Regional Management and General Managers of Asia Branches.
Deliver Data Protection services to Asia branches. Maintain an up-to-date knowledge of data protection laws in Asia locations through involvement with representative industry groups and appropriate training, and ensure compliance to those regulations within the Asia branches.
Excellent written and oral presentation skills. Desirable to have Mandarin language
Must have experience in 2nd line of defence, governance, policy deadline, MAS regulations, risk management, cloud security
Knowledge of the latest technical risks facing the firm, knowledge of popular hacking techniques, an understanding of appropriate countermeasures, as well as knowledge and understanding of the data protection act and privacy laws in Asia.