Requirements

Description & Requirements

Role Description

Joining a small, but strong team of cybersecurity professionals, the candidate will assist subsidiaries of the Jardine Matheson Group to improve their cybersecurity programs through the application of appropriate security tools, methodologies and software development and IT operations best practices.

Responsibilities

• Crafting and detailing policies and standards incorporating best practices for security governance and operations
• Evaluating and selecting security tools and developing configuration baselines and operating practices to protect data, applications, infrastructure, and software development
• Creating security architecture templates and helping subsidiaries to adapt them to their IT environments
• Monitoring the threat and technology landscapes to identify new threats, opportunities and solutions to guide businesses in mitigating emerging risks
• Helping businesses to develop, test and execute incident response plans and manage security incidents
• Helping businesses review security programs against current frameworks (NIST, CIS, ISO 27001, etc.) and best practices to identify gaps and develop improvement programs
• Developing security metrics to analyse effectiveness of security programs and tracking improvements over time
• Guiding and training IT and security staff in subsidiaries on the application and execution of the standards, tools, metrics and best practices
• Mentoring and guiding security and IT team members
• Collaborating with cross-functional teams to drive security initiatives and promoting a unified security mindset
  
  

Job Requirement

• University graduate – preferably in Information Security or Computer Science
• Minimum of 7 years working experience in Information Security roles, with experience in IT security strategy development and execution
• Professionally qualified (e.g., CISSP, CISM, PCI ISA or OSCP)
• Extensive experience and knowledge of application and infrastructure security, Cloud (Office 365, AWS/Azure/GCP), IT operations, and secure software development
• Familiar with Data Privacy and PCI regulatory compliance requirements
• Experienced in managing a team and working in a global or regional environment
• Experienced in managing vendors or working with managed services providers
• Self-motivated, analytical and possessing good interpersonal and problem-solving skills
• Passionate about mastering new technology and using it to solve business problems
• Strong written and oral communication skills in English and Chinese
  
  

About Jardine Matheson

Jardine Matheson is a diversified Asian-based group with unsurpassed experience in the region, having been founded in China in 1832. We comprise a broad portfolio of market-leading businesses, which represent a combination of cash generating activities and long-term property assets that are closely aligned to the increasingly prosperous consumers of the region.

Across the Group, our over 400,000 employees work in a wide range of businesses in major sectors including motor vehicles and related operations, property investment and development, food retailing, health and beauty, home furnishings, engineering and construction, transport services, restaurants, luxury hotels, financial services, heavy equipment, mining and agribusiness.