Information Security Operator

---

Job description

Information security operator aims to help the bank safeguard its information security operations and maintain the information security systems. Collaborate with Head Office and information security team for the information security system maintenance according to the Branch

Client Details

One of the world's largest commercial banks, offering corporate and personal banking, investment services, and asset management.

Description

Manage and implement the Branch information security operation according to the branch and HO policy and procedure.

Development of relevant information security operation areas assessment based on the local and HO information security policy and procedure.

Liaise closely with the Head Office to ensure maximum cooperation concerning the Branch's IT and information security management, implementation, and support.

Be responsible for the information security system implementation, maintenance, and management, and provide information security operation system updates and analysis.

Implement Head Office ("HO") Information security projects, and provide feedback to HO survey and questionnaire.

Be responsible for cooperating with the HO, second defense line, and third defense line in the information security area.

Be responsible for the IT Disaster Recovery, daily rehearsal, and BCP recovery test.

Oversight the IT system threat prevention, threat detection, and an incident response strategy, leading the IT incident investigations and managing the response for the IT incident.

Develop a control program that proactively identifies threats to the Branch and guides the acquisition of advanced security controls.

Lead and coordinate, internally and externally, responses to IT security incidents, providing timely reports during the incident and remediation as well as proposing solutions to anticipate, prevent, or mitigate future incidents.

Evaluate, disseminate information security rules, laws, and best practices to IT department staff.

Write technical documents and testing reports. Provide support for the internal and external audit and exam.

Be responsible for demonstrating risk awareness by following all policies, procedures, and internal control in their daily routine.

Profile

5-7 years of related experience including knowledge of Cyber Security and IT Operation etc.

String Knowledge of information security best practices, standards, and frameworks, such as ISO/IEC27000, NIST 800-53, FFIEC, and NYSDFS Part 500

Knowledge of technical infrastructure, networks, databases, and systems concerning Information Technology Security and Risk Management

Independent worker, accountable, and skilled in exercising sound judgment, planning, and organizational skills.

Knowledge of Information Security applications and proficiency in specific knowledge applications

Nice to Have: Bilingual in English & Mandarin or Cantonese

Job Offer

Quick interview process with an immediate start date. Job will be on-site in Manhattan for duration of the contract.

MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.

<!– job description page –>