Technology Risk & Compliance Manager (IT auditor welcomed!) Technology Risk & Compliance Manager (IT auditor  …

Terminal 1
in Hong Kong, Hong Kong, Hong Kong
Permanent, Full time
Be the first to apply
Terminal 1
in Hong Kong, Hong Kong, Hong Kong
Permanent, Full time
Be the first to apply
A well-funded and fast-growing Insurtech company is looking for an experienced technology risk & compliance professional to join them in revamping the insurance industry and deliver great alternatives to the market! This is a perfect career move for you if you want to work in a dynamic and passionate team to deliver good insurance products to consumers!

We Offer

  • Competitive salary
  • Fun, co-operative and flexible startup culture
  • Weekly sharing sessions and regular happy-hour gatherings
  • Flexible working hours 5-day work week and
  • Annual Leave Benefits include medical/ dental coverage and wellness program
  • Professional Development
  • Sponsorship Hong Kong working visa sponsorship (onsite position)


  • Serve as subject matter expert on our security and privacy policies
  • Identify key external security and privacy stakeholders, their issues, risks, and opportunities for engagement
  • Develop external engagement strategy to influence global security and privacy policy
  • Articulate our security and privacy policy positions for briefing papers, requests for comments, and internal policy meetings
  • Provide subject matter expertise on processes, controls, and objectives around audit and security activities
  • Manage and report security assessments and ongoing monitoring activities across our client's security requirements and best practices
  • Partner with other compliance teams to map and maintain all controls in the digital platform
  • Assist with collecting and maintaining evidence for external assessors and auditors
  • Author and roll out policies, standards, and procedures in collaboration with other teams
  • Evaluate and report on security risks, processes, and projects to various stakeholders
  • Provide written documentation in response to various audit and compliance requests
  • Stay current on developing regulatory and compliance changes and provide guidance on new security and privacy requirements
  • Work across the Engineering team to effect culture change and help teams implement automated compliance into their workflows

Hard Requirements

  • Experience in security or technology compliance.
  • Strong familiarity with and track record of implementing security standards or frameworks and Hong Kong privacy policy
  • Experience in developing or building control environments in financial services or healthcare companies
  • Experience in designing, implementing, configuring, or testing security and technology controls with stakeholders and managing multiple business priorities
  • Relevant BA/BS degree and/or certifications (CISA, CISSP, CISM, CRISC)