Hong Kong SAR
Experienced Security and Testing Lead with a demonstrated history of working in the airlines/aviation industry. Skilled in Management, Information Security, Troubleshooting, ISO 27001 Lead Auditor, and IT Operations. Strong information technology professional with a Master of Science (MSc) focused in Information Technology from The Hong Kong University of Science and Technology.
Lead data security projects in technical aspect and perform data profiling and metadata management Ensure functional and technical specifications, are managed, accessed and archived across the enterprise aligned within quality, availability, compliance and security requirements Ensure compliance and support existing and future data governance policies Act as security advisors, evaluate and determine the potential risk of data breach and security issue Management and Control Cyber Security event Conduct data classification, data discovery and data element mapping regularly to reflect latest business solution changes. Review and monitor data security requests from projects, operation and analytics perspective Play a key role in the Data Governance board and provide data security benchmarking from test environment perspective. Conduct regular database security review and provide feasible recommendation to improve the overall security posture. Organize, conduct and perform Cybersecurity risk assessment and gap analysis process. Establish, review and verify the Cybersecurity reviews conducted on Systems. Evaluate and analyse Risk level for Cyber Security. Delivering Security Insights with Data Analytics, Visualization, and report to Management level.
Conduct regular review on IT security (on OS platforms, middleware, desktop, endpoint, and anti-virus, etc.) and prepare/ compile reports Develop, follow and maintain process documentation Review and Implement security control on UAT/Testing platform control and governance Perform incident verification and investigation and work with carious teams to resolve incident issues Ensure all the processes are according to the policies from IT governance and IT Compliance Assist in coordination with various departments on the adherence to company Information Security Policies & Guidelines Implementation and enforcement of organization wide security standards, policies and procedures.