15 hours ago

Senior Manager, Information Security

Swire Properties

On Site
Full Time
HK$0
Hong Kong, Hong Kong SAR

Job Overview

Job TitleSenior Manager, Information Security
Job TypeFull Time
Offered SalaryHK$0
LocationHong Kong, Hong Kong SAR

Who's the hiring manager?

Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.

Uncover Hiring Manager

Job Description

ABOUT THE TEAM

A career at Swire Properties is more than just work, it’s a calling. We’re searching for exceptional individuals who want to live and breathe “Creative Transformation” – our distinct mindset and long-term approach that inspires everything we do and how we do it. It inspires us to constantly explore new perspectives and seek out original thinking that goes beyond the conventional. Our mission, ultimately, is to constantly add value to communities and create truly amazing and sustainable places where people can thrive. Additionally, we are deeply committed to prioritising health and safety in all our operations, ensuring a healthy, safe and supporting environment for our People, partners and the communities we serve.

Join us today and work on career-defining projects that are changing the industry in Hong Kong, the Chinese Mainland, Miami and Southeast Asia.

We are looking for a Senior Manager, Information Security to join the Digital and IT function here at Swire Properties, while reporting to the General Manager, Digital & IT, Hong Kong. You will be the strategic leader to oversee the Information Security Management function, involving planning, budgeting, and promotional activities that emphasize the importance of information security. Responsibilities include collaborating with various governance functions, guiding security representatives across the organization, and implementing an Information Security Management System following ISO/IEC 27000 standards. The role will also encompasses policy development, compliance monitoring, risk assessments, and cybersecurity incident management while promoting awareness and training on information security.

RESPONSIBILITIES

  • Leadership and strategic direction for the function, ranging from planning and budgeting to motivational and promotional activities expounding the value of information security.
  • Routine management and leadership within the Information Security Management function.
  • Liaison with and offers strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) plus senior and middle managers throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies.
  • Recruitment, leadership and direction for a loose network of information security representatives distributed throughout the organization.
  • Leads the design, implementation, operation and maintenance of the Information Security Management System based on international standard i.e. ISO/IEC 27000 series standards.
  • Define and refine guidelines for information security management, for example offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively to all business units.
  • Leads the preparation and authorizes the implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Committee.
  • Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations.
  • Leads suitable information security awareness, training and educational activities.
  • Leads information security risk assessments and controls selection activities.
  • Leads activities relating to cybersecurity incident management.
  • Leads activities relating to PCI-DSS compliance / Risk Management.

REQUIREMENTS

  • Bachelor and/or Master's degree in computer science, IT, Cybersecurity, Information Security, Network Engineering, Computer Engineering, Software Engineering, Information Management
  • At least 10 years of full-time work experience in information Technology including 3-years in security management and/or related functions (such as IT audit and IT Risk Management).
  • High standards of personal integrity (demonstrated by an unblemished career history, complete lack of criminal convictions etc.), and willing to undergo vetting and/or personality assessments to verify this if necessary.
  • Hands-on team leadership and management experience.
  • A background in technical IT roles such as IT architecture, development or operations, with a clear and abiding interest in information security.
  • Information security management qualifications such as CISSP or CISM. ISO 27001 Lead Implementer or Lead Auditor.

BEHAVIOURAL COMPETENCIES

  • Decision Quality
  • Cultivates Innovation
  • Business Acumen
  • Drives for Results
  • Ensures Accountability
  • Optimizes Work Processes
  • Collaborates
  • Communicates Effectively
  • Situational Adaptability

WHY CHOOSE US

Randstad Hong Kong: Awarded Most Attractive Employer in the Property and Real Estate sector for 2024 and 2025

HRoot Awards (Chinese Mainland): Received the Best Employer Award for 2023 and 2024, along with the Best Social Enterprises Award in 2024

Don’t Miss This Opportunity

As an equal opportunity employer, Swire Properties strives to foster a diverse workforce and inclusive workplace, where People can thrive.

If you require special assistance and accommodations during any part of the recruitment process, including the online application and/or the selection process, please reach out to us via email at any time.

If we haven't contacted you six weeks after your submission, then please consider your application unsuccessful this time.

All personal data collected during the application process will be kept for 12 months after its completion, and then destroyed. All information will be used for recruitment and appointment purposes only. The Company will handle all personal data confidentially in accordance with the Hong Kong Special Administrative Region's Personal Data (Privacy) Ordinance.

Key skills/competency

  • Information Security Management
  • ISO/IEC 27000 Standards
  • Cybersecurity Incident Management
  • Risk Assessment
  • PCI-DSS Compliance
  • Policy Development
  • Compliance Monitoring
  • IT Governance
  • Security Awareness & Training
  • Leadership & Team Management

Tags:

Information Security Manager
Information security
Risk management
Compliance
Policy development
Incident management
IT governance
Security awareness
Audit
Cybersecurity
ISO 27000
PCI-DSS
IT architecture
Network engineering
Computer science
Cybersecurity
Information management
Digital transformation
Cloud security
Data privacy

Share Job:

How to Get Hired at Swire Properties

  • Research Swire Properties' culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
  • Tailor your resume: Highlight experience in information security management, ISO 27000, risk assessment, and leadership relevant to a Senior Manager, Information Security role.
  • Showcase certifications: Emphasize CISSP, CISM, or ISO 27001 Lead Implementer/Auditor qualifications.
  • Prepare for behavioral questions: Practice demonstrating decision quality, innovation, and effective communication, aligning with Swire Properties' competencies.
  • Understand their global footprint: Be aware of their operations in Hong Kong, Chinese Mainland, Miami, and Southeast Asia, showing broader business acumen.

Frequently Asked Questions

Find answers to common questions about this job opportunity

Explore similar opportunities that match your background