• IT Security.
• Security Risk Assessment and Audit.
• IT Audit.

Information security compliance monitoring and audit for bureaux and departments (B/Ds)

Seconded to our clients of public sector to perform the followings:

• Work independently to manage the security compliance audit exercise of individual B/Ds and assess their security compliance against department's security requirements.  The responsible activities included but not limited to conduct meetings, arrange interviews with B/Ds' staff, review security processes and controls of B/Ds, prepare written reports, etc.;
• Provide support to manage the in-depth security compliance audit exercise on selected IT systems to enhance the security of IT systems by adopting a risk-based approach;
• Analyse the audit results of compliance audit exercises;
• Review the existing security compliance monitoring and auditing mechanism and commonly found issues and formulate security management processes requiring most attention;
• Monitor the completion status of the follow-up work of security audit; and 
• Perform other related tasks as assigned.
   

• Degree holder in Computer Science or related discipline;
• Minimum 6 years post-qualification IT experience with at least 2 years of experience in similar capacity;
• Solid experience in performing security risk assessment and security audit as an assessor/auditor independently in public or private sector (preferable in government departments or banking industry);
• Solid experience in conducting technical assessments is preferred, e.g. vulnerability scanning, penetration testing, source code scanning, manual code reviews, configuration reviews, simulated attacks, etc.;
• Knowledge on international security standards and industry security best practices;
• Experience in project management is an advantage; 
• Good command of both written and spoken English; and
• Valid Certification of CISP, CISSP, CISM, CISA, or ISO/IEC 27001 Lead Auditor.

Interested parties please send detailed resume with present/expected salary to HR Department.

Address: Room 1202, 12/F, Harcourt House, 39 Gloucester Road, Wanchai, Hong Kong.

Tel: 2838-6813

Fax: 2838-6776

We are an equal opportunity employer and welcome applications from all qualified candidates. Personal data collected will be treated in strictest confidence and handled confidentially by authorized personnel for recruitment-related purposes within the Group. Applicants not hearing from us within six weeks from the date of advertisement may consider their applications unsuccessful.