en

Services

We understand that no two organisations are the same. Find out more about how we've customised our talent solutions to help clients in Hong Kong meet their needs.

Read more
Jobs

Let our industry specialists listen to your aspirations and present your story to the organisations in Hong Kong that fit you the best as we collaborate to write the next chapter of your successful career.

See all jobs
Candidates

Together, we’ll map out career-defining, life-changing pathways to achieve your career ambitions. Browse our range of services, advice, and resources.

Learn more
Services

We understand that no two organisations are the same. Find out more about how we've customised our talent solutions to help clients in Hong Kong meet their needs.

Read more
About Robert Walters Hong Kong

Since our establishment in 1997, our belief remains the same: Building strong relationships with people is vital in a successful partnership.

Learn more

Work for us

Our people are the difference. Hear stories from our people to learn more about a career at Robert Walters Hong Kong

Learn more

Senior Manager/ Manager - IT Risk & Control Assurance

Save job

Join our enterprise as a Manager to drive critical and impactful risk management practices. Play a key role in safeguarding our technology landscape while advancing your career in a dynamic, forward-thinking environment.

What you'll do:

  • Support and execute IT risk and control initiatives, including risk management, assessments, controls testing, and security governance
  • Evaluate risks in accordance with policies, standards, and best practices for IT and business projects
  • Review security assessments, risk acceptance decisions, and mitigation strategies for senior management
  • Ensure proper implementation of security measures, governance, and risk controls across IT services, infrastructure, and applications
  • Support audit activities and consolidate artifacts for audit closure
  • Promote risk awareness and conduct related events within the enterprise
  • Align personal development with business objectives to foster team growth

What you'll bring:

  • Bachelor's degree in IT, Risk Management, or Audit
  • for manager grade, 4-6 years in IT or audit roles; 2-3 years in technology risk assessment and control testing
  • for senior manager grade, 10 years in IT/tech risk/ tech audit experience is strongly preferred
  • Preferred certifications: CISA, CISSP, CRISC
  • Experience in security assessment planning and risk evaluation using risk-based methodologies
  • Skilled in reporting technology risks to stakeholders
  • Strong technical writing skills for reports, dashboards, and metrics
  • Knowledge of ISMS, COBIT, NIST, ISO27000, ISO31000, COSO, and other risk frameworks
  • Deep understanding of audit controls, IT general controls, and tech risk management, including infrastructure, cloud, cyber, and applications security
  • Background in enterprise networking, operating systems, and database security controls
  • Skilled in DevSecOps, cloud security, GDPR, PIPL, and cyber laws

Contract Type: FULL_TIME

Specialism: Tech & Transformation

Focus: Cyber Security

Industry: IT

Salary: HKD500,000 - HKD1,200,000 per annum + bonus

Workplace Type: On-site

Experience Level: Associate

Location: Hong Kong

Job Reference: S0YSBJ-553161FC

Date posted: 29 May 2025

Consultant: Fiona Fung