Senior Technical Manager

Your day-to-day activities will involve collaborating with various departments to identify vulnerabilities, develop mitigation strategies, and ensure adherence to rigorous security standards. You will play an instrumental role in enhancing existing frameworks by conducting thorough assessments tailored to both IT infrastructure and business operations.

SENIOR TECHNICAL MANAGER CYBER RISK ASSESSMENT AND ANALYSIS

Salary: Competitive and based on experience
Location: Hong Kong

Keywords: Cybersecurity, Risk Management, Technical Leadership, Security Compliance, Risk Assessment, Information Security, Collaboration, Governance, Cloud Security, DevSecOps

A leading organisation in Hong Kong is seeking a Senior Technical Manager for Cyber Risk Assessment and Analysis to play a pivotal role in shaping the future of its cybersecurity landscape. This is an exceptional opportunity for you to join a highly respected institution where your expertise will directly influence the evolution of cyber risk management frameworks, drive best practices, and ensure robust protection across all business operations. You will be empowered to collaborate with knowledgeable teams, contribute to a culture of inclusivity and trust, and make a tangible impact on the security posture of a major enterprise. With flexible working opportunities, access to advanced training resources, and the chance to work alongside some of the most experienced professionals in the industry, this position offers both professional growth and personal fulfilment.

* Take ownership of critical cyber risk assessment initiatives that shape organisational security strategy and governance, ensuring alignment with global standards and regulatory requirements.
* Enjoy flexible working opportunities and ongoing training that support your career development while contributing to a diverse, inclusive, and supportive workplace culture.
* Collaborate closely with cross-functional teams to implement effective solutions, share knowledge, and foster an environment built on trust, respect, and shared success.

What you'll do:

As a Senior Technical Manager Cyber Risk Assessment and Analysis, you will be at the forefront of safeguarding the organisation’s digital assets through expert evaluation of cyber risks. Your day-to-day activities will involve collaborating with various departments to identify vulnerabilities, develop mitigation strategies, and ensure adherence to rigorous security standards. You will play an instrumental role in enhancing existing frameworks by conducting thorough assessments tailored to both IT infrastructure and business operations. Success in this role requires you to balance technical acumen with strong interpersonal skills as you guide teams through complex risk scenarios while championing best practices. By preparing insightful reports for senior leadership and partnering with stakeholders across the business, you will help shape strategic decisions that reinforce a secure operating environment. Your commitment to nurturing an inclusive culture will further strengthen team cohesion as you support collective efforts towards achieving organisational goals.

* Support and drive directives from Cybersecurity management by prioritising key initiatives that enhance organisational resilience against emerging threats.
* Contribute significantly to the continuous improvement of the Cybersecurity Risk Management (CSRM) programme by executing targeted risk assessments and refining existing frameworks.
* Align risk appetite with business objectives by fine-tuning processes and ensuring seamless integration of risk management practices within operational workflows.
* Follow established risk management protocols using tools such as Risks & Controls Library, Impact Thresholds, Security Governance structures, Controls Testing procedures, Issue Management systems, Risk Registers, and comprehensive Risk Reporting mechanisms.
* Assess risks for IT and business projects based on internal policies, international standards, technology compliance requirements, and industry best practices.
* Ensure that security measures are effectively adopted throughout the organisation to mitigate identified risks while maintaining compliance with relevant regulations.
* Oversee governance of risk exceptions and acceptance processes by validating them in a timely manner and escalating issues appropriately when necessary.
* Prepare detailed reports for senior management that clearly communicate the current security posture and highlight areas requiring attention or improvement.
* Partner with Information Security and IT teams to design and implement appropriate solutions that address vulnerabilities and reduce exposure to cyber threats.
* Actively participate in fostering a diverse and inclusive culture by supporting cross-team efforts, modelling collaborative behaviours, and promoting knowledge sharing.

What you bring:

To excel as a Senior Technical Manager Cyber Risk Assessment and Analysis, you will bring a wealth of proven experience spanning technology risk management, information security consulting, audit engagement, and compliance oversight. Your academic background will be complemented by practical exposure gained through years spent navigating complex IT environments—enabling you to assess risks holistically while tailoring recommendations for both technical experts and business leaders. Your familiarity with international standards such as ISMS (ISO27000/31000), NIST or COBIT frameworks will underpin your approach to developing robust controls. In addition to your technical prowess across areas like DevSecOps, cloud security architectures, GDPR/PII compliance laws, infrastructure protection strategies (including networking/operating systems/database controls), your interpersonal strengths—such as negotiation skills, presentation abilities, empathy for colleagues’ perspectives—will set you apart. Your aptitude for producing clear documentation (assessment reports/presentations/dashboards) ensures transparency at every stage. Above all else, your collaborative spirit fosters knowledge sharing while supporting others’ growth within an inclusive team environment.

* A university degree in Computer Science, Information Technology/Security Management, Cybersecurity or a related discipline is essential for this position.
* Extensive experience working within technology risk management environments is required to navigate complex challenges effectively.
* A strong consulting background in IT/Security or IT Audit is highly desirable for providing expert guidance across multiple domains.
* At least eight years’ experience in IT technical roles combined with three years’ hands-on involvement in technology risk assessment and security compliance is expected.
* Professional certifications such as CISA, CISSP, CRISC or equivalent are preferable for demonstrating advanced competency in information security.
* Proven ability to adopt risk-based assessment methodologies while engaging constructively with audit counterparts is important for success.
* Demonstrated experience performing comprehensive risk assessments and evaluations across diverse technological landscapes is vital.
* Expertise in reporting risks tailored specifically for both IT specialists and business stakeholders ensures clear communication of critical issues.
* Competency interacting with seasoned colleagues on topics including Technology Risk, Audit agendas, Cybersecurity Risk Management, Control Compliance is crucial.
* Experience building awareness among staff through support initiatives or training programmes contributes positively to organisational resilience.

What sets this company apart:

This organisation stands out as one of Hong Kong’s most prominent employers renowned for its unwavering commitment to excellence in both operational performance and employee wellbeing. Here you will find an environment where diversity is celebrated; every voice matters regardless of background or department. The company invests heavily in professional development—offering access to cutting-edge training resources designed to keep your skills sharp amid evolving industry trends. Flexible working arrangements empower you to achieve work-life harmony without compromising on career progression. The leadership team models supportive behaviours that encourage open communication while recognising individual contributions within a broader context of shared achievement. As part of this forward-thinking institution’s cybersecurity function, you’ll have unparalleled opportunities not only to advance your own expertise but also help shape best practices that benefit colleagues across all levels. Whether collaborating on high-impact projects or participating in cross-departmental initiatives aimed at strengthening organisational resilience—you’ll be joining a community united by purpose: protecting what matters most through teamwork built on trust.

What's next:

If you are ready to take your career in cyber risk management to new heights within an inclusive environment where your expertise truly makes a difference—this is your moment!

Apply today by clicking on the link provided—your next rewarding challenge awaits.