As the China Risk Management Leader focusing on internal and external Risk Management, your role is crucial in ensuring the most critical risks are well understood and aligned with acceptable risk tolerance as required across the China Region and assigned Domains.
Your missions
•
Develop and implement strategies to identify, assess, and mitigate both internal and external risks associated with China Region and assigned Domains. Build partnerships across Ent-IT, Domains, BU's by launching risk review campaigns to understand strategic risks in the Ent-IT space within China Region and assigned Domains.
•
Define, identify, and assess risks to the Ent-IT organization, infrastructure, China Region and assigned Domains. This will include working with business and domain partners analyze the risks likelihood, criticality and impact and developing strategies to minimize harm. This will also include creating Key Internal Controls (KICs) of risk within focused space of China region and assigned domains. Deploy, implement and maintain KIC's to establish deep visibility to evolving risk landscape within focused area of China region and assigned domains.
Want more jobs like this?
Get jobs in Beijing, China delivered to your inbox every week.
•
Measure, monitor and report across focused China region and assigned domains to assure proper visibility to risks are maintained, understood and properly mitigated as required. May include Thought leadership associated with risk in evolving areas impacting China region and assigned domains to include areas such as Gen-AI, Privacy and regulatory/compliance aspects.
•
Shares his/her experience in communities and enhances security team accomplishments and competence by providing overall leadership of China Team in planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. Position requires leadership of a small Regional Team .
•
Responsible for the establishing a deeper understanding of Ent-IT Risks across the Regional/Domain footprints. This will include global business engagement and establishing partnerships/global collaboration across organizations including Ent-IT, Security Governance, SOC and BU partners to influence decisions regarding overall management of Ent-IT Risk by pursuing identification, measurement, reporting and management of risk mitigation.
•
Determines Risk Exposure by evaluating situations of in scope applications/platforms/capabilities (both internal and via 3rd party/vendors/SaaS); researching information security standards, evaluating overall risk assessments and their technical platforms/hosting arrangements/security practices. Extension of Risk/Security practices and implementation of recommendations to specific areas, along
General
with potential need to drive mitigation plans of systems platform or applications may be
required.
•
Formulate standard/consistent reporting practices for communication/reporting of findings and progress. This will include exposure and interaction with global Executive level leaders.
Qualifications
Holder of an Bachelor or Master's degree in cybersecurity and/or IT
•
With at least 5+ years of experience in the field of risk management/cybersecurity.
•
Solid experience in methods, processes, and tools for identifying, assessing, and mitigating risks
•
Experience working with international organizations and collaborating with global teams
•
Experience as a leader or manager of a team in risk management or cybersecurity
•
Ideally one or more certifications in the field of risk management (CRISC, CRMP, CRM, PRM...)
•
Must be able to seamless work & collaborate with global teams
•
Must be good in Written & Spoken English
Schedule: Full-time
Req: 009ACP