IT Security Analyst
- Not Specified
- Hong Kong Hong Kong Hong Kong HK
- Contract, Full time
- 13 Mar 18 2018-03-13
FWD spans Hong Kong & Macau, Thailand, Indonesia, the Philippines, Singapore and Vietnam, offering life insurance across its markets. In Hong Kong, FWD also provides general insurance, employee benefits, pension and financial planning services. FWD’s strategic focus is to leverage technology to create fresh customer
FWD spans Hong Kong & Macau, Thailand, Indonesia, the Philippines, Singapore and Vietnam, offering life insurance across its markets. In Hong Kong, FWD also provides general insurance, employee benefits, pension and financial planning services. FWD’s strategic focus is to leverage technology to create fresh customer experience, deliver easy-to-understand products, and achieve its vision to become the leading pan-Asian life insurer that changes the way people feel about insurance.
FWD is the insurance business arm of investment group, Pacific Century Group. The life insurance and general insurance operating entities of FWD Hong Kong have been assigned strong financial strength ratings by international rating agencies. While FWD Life Insurance Company (Bermuda) Limited has been affirmed ‘A3’ by Moody's and ‘A’ by Fitch, FWD General Insurance Company Limited has also received ‘A’ rating from Fitch, all with a stable outlook.
In Hong Kong & Macau, FWD has been providing quality services to around 487,000 customers with over 600+ staff.
If you are looking for a company where can fuel your inspiration and cultivate your expertise, join us on our exciting journey.
•Provide oversight and governance of IT risk and security for the FWD Group Office and other FWD Business Units in Hong Kong (FWD HK) to achieve robust and appropriate protection for the business.
•Serve as the security process owner, handling all the IT risk and security related issues and providing guidance and assistance to ensure on-going activities/integration meets IT security standards and local regulatory requirements.
•Ensure that baseline security is in place, system hardening, vulnerability scanning and patch management are carried out periodically as required.
•Conduct periodic security compliance checks and reviews (e.g. penetration test, firewall configuration review, user access review, etc.)
•Review, evaluate and oversee the implementation of new or enhanced security tools.
•Provide IT security support on projects and systems.
•Conduct investigation on security incidents and ensure appropriate actions are being taken.
•Conduct regular security awareness training and communications for the user community.
•Minimum 5 years working experience in implementing IT risk, security and operations control, preferably in Financial Institutions.
•Degree from Information Technology or equivalent, Master degree is desirable.
•Holder of CISSP or CISM preferable.
•Excellent technical skills on IT security with hands-on experience on security tools (e.g. application and operating system hardening, vulnerability assessments, security audits, intrusion detection systems, firewalls, data encryption, etc.)
•Good oral and written communication and presentation skills.
•Good interpersonal skills.
•Broad knowledge on the following information technology areas and their associated security risks: mobile / web applications, database, IT infrastructure / network and IP telephony.
Information collected will be treated in strict confidence and used solely for recruitment purpose. The company will retain all applications no longer than 24 months of which will be destroyed thereafter. When there are vacancies in any of our subsidiaries, holding companies, associated or affiliated companies of, or companies controlled by, or under common control with the Company during that period, we may transfer your application to them for consideration of employment. We are an equal opportunity employer. We do not discriminate on the basis of race, sex, disability or family status in employment process.