Back to job search
Project Task:
Information security compliance monitoring and audit for public sector bureaux and departments (B/Ds) and
Provide information security support and services for public sector:
Job Description:
Provide information security support and services for the public sector:
1.Work independently to manage the security compliance audit exercise of individual B/Ds and assess their security compliance against the public sector's security requirements. The responsible activities included but not limited to conduct kick off meetings, arrange interviews with B/Ds' staff, review security processes and controls of B/Ds, prepare written reports, etc.;
2.Evaluate the effectiveness of security risk assessment (SRA) conducted by departments;
3.Study the quality of the latest SRA exercise(s), especially against new government initiatives;
4.Conduct research on ISO/IEC 27001, information security governance mechanism, and other related topic; and
The candidate should have:
1.Solid experience in performing security risk assessment and security audit as an assessor/auditor
independently in public or private sector (preferable in government departments or banking industry);
2.Knowledge on international security standards and industry security best practices;
3.Experience in formulating information security policies and guidelines;
4.Good command of both written and spoken English; and
5.Valid Certification of CISP, CISSP, CISM, CISA or ISO/IEC 27001 Lead Auditor.
For interested parties please submit your cv by clicking apply.
Contract Senior Systems Analyst
| Location: | Hong Kong |
| Job Type: | Contract |
| Posted: | 1 day ago |
| Contact: | Christy Yow |
| Discipline: | |
| Reference: | 41202 |
Information security compliance monitoring and audit for public sector bureaux and departments (B/Ds) and
Provide information security support and services for public sector:
Job Description:
Provide information security support and services for the public sector:
1.Work independently to manage the security compliance audit exercise of individual B/Ds and assess their security compliance against the public sector's security requirements. The responsible activities included but not limited to conduct kick off meetings, arrange interviews with B/Ds' staff, review security processes and controls of B/Ds, prepare written reports, etc.;
2.Evaluate the effectiveness of security risk assessment (SRA) conducted by departments;
3.Study the quality of the latest SRA exercise(s), especially against new government initiatives;
4.Conduct research on ISO/IEC 27001, information security governance mechanism, and other related topic; and
The candidate should have:
1.Solid experience in performing security risk assessment and security audit as an assessor/auditor
independently in public or private sector (preferable in government departments or banking industry);
2.Knowledge on international security standards and industry security best practices;
3.Experience in formulating information security policies and guidelines;
4.Good command of both written and spoken English; and
5.Valid Certification of CISP, CISSP, CISM, CISA or ISO/IEC 27001 Lead Auditor.
For interested parties please submit your cv by clicking apply.
similar jobs
We bank on our people.
For over two decades Peoplebank has been finding and delivering the best talent in the marketplace to our clients. We would not be where we are today, if not for our employees. That is why we are focused on building a great place to work, where our employees can fulfill their career aspirations.
read moreCall us on +852 2819 2900