Information Technology Security Specialist

Role: Vice President- Information Technology Security Specialist

Education and Experience Requirements:

• BS in Computer Science, Information Technology or equivalent related field.
• 5-7 years of related experience including knowledge of Cyber Security and IT Operations in the financial services industry.

Skills and Knowledge:

• Strong Knowledge of information security best practices, standards, and frameworks, such as ISO/IEC27000, NIST 800-53, FFIEC, and NYSDFS Part 500
• Knowledge of technical infrastructure, networks, databases, and systems concerning Information Technology Security and Risk Management
• Independent worker, accountable, and skilled in exercising sound judgment, planning, and organizational skills.
• Knowledge of Information Security applications and proficiency in specific knowledge apps
• Bilingual candidates in Mandarin and or Cantonese highly preferred

Responsibilities:

• Collaborate with the headquarters and information security team for the information security system maintenance according to the Branch and the headquarter office policy and procedure.
• Manage and implement the Branch information security operation according to the branch and\ HO policy and procedure.
• Development of relevant information security operation areas assessment based on the local and HO information security policy and procedure.
• Liaise closely with the Head Office to ensure maximum cooperation concerning the Branch’s IT and information security management, implementation, and support.
• Be responsible for the information security system implementation, maintenance, and management, and provide information security operation system updates and analysis.
• Implement Head Office (“HO”) Information security projects, and provide feedback to HO survey and questionnaire.
• Be responsible for cooperating with the HO, second defense line, and third defense line in the information security area.
• Be responsible for the IT Disaster Recovery, daily rehearsal, and BCP recovery test.
• Oversight the IT system threat prevention, threat detection, and an incident response strategy, leading the IT incident investigations and managing the response for the IT incident.
• Develop a control program that proactively identifies threats to the Branch and guides the acquisition of advanced security controls.
• Lead and coordinate, internally and externally, responses to IT security incidents, providing timely reports during the incident and remediation as
• well as proposing solutions to anticipate, prevent, or mitigate future incidents.• Evaluate, disseminate information security rules, laws, and best practices to IT department staff.
• Write technical documents and testing reports. Provide support for the internal and external audit and exam.
• Be responsible for demonstrating risk awareness by following all policies, procedures, and internal control in their daily routine.