The Information Security Officer (ISO) is responsible for managing the Information Security and Data Privacy Program, serving as the Single Point of Contact (SPOC) for all second-line functional activities related to confidentiality, integrity, availability, privacy, and recovery of information. The ISO will ensure compliance with regulatory requirements and implement adequate security controls across Hong Kong & China business units. The role involves planning, implementing, monitoring, and reviewing the information security program in consultation with the Head Office Information Security team.

Job Responsibilities

• Review and maintain Security and Data Privacy policies, standards, and procedures for Hong Kong & China business units.
• Develop and update local Data Privacy policies in alignment with regulatory and organizational requirements.
• Ensure compliance with relevant regulations, including HKMA Standards, HK PDPO, TMG1, TMG2, SA-2...