Job Openings Senior Information Security Officer

About the job Senior Information Security Officer

In this position, you will :

  • Participate in security project, external & internal compliance audit support, security operation including training, security incident and response, core system user account review, vulnerability lifecycle management
  • Establish, maintain and update documentation on the policies, processes, guidelines and security reports
  • Establish, maintain, and operationalize the process for Change and Release Management to ensure the production environment with standardized process and procedures are used for efficient handling of changes to minimize incidents due to change & release
  • Lead the Change and Release Management process activities across various IT functions within the organization including coordination, monitoring and reporting as a continuous service improvement cycle.
  • Act as a focal point for all escalation and communication activities related to users and IT teams to ensure effective and efficient execution of change activities. Highlight and escalate risk & issues to management.
  • Define and measure success metrics and monitor Change and Release progresses
  • Other task and responsibility assigned by Team Lead and Department Manager

To be successful in this position, you should meet the following requirements:

  • Degree or above in Information Technology, Computer Science or related disciplines
  • 5+ years with Information Security and IT Service Management
  • ITIL v4 and CISSP or Cyber Security equivalent certification is a MUST
  • Experience with international compliance standard : ISO 27001 and ISO 20000 & ITIL Framework and SOX
  • Understanding DevOps and ITIL complementary
  • Excellent technical knowledge of mainstream operating system, networking, security technology
  • Proven track record in Change and Release Management
  • Working knowledge of IT security, especially Data Security domain is an advantage
  • Excellent communication skills to facilitate cross team collaboration and different departments
  • Self-initiative and high sense of responsibility with can-do attitude
  • Strong sense and passion for information security
  • Good command of Cantonese, Mandarin and English
  • High sense of urgency and ability to multitask and work well under pressure among ad-hoc, project, and managements request concurrently
  • Less experience candidates will be consider as IT Security Officer