Regional Fraud and Information Security Officer

Permanent contract|Hong Kong|IT (Information Technology)

Regional Fraud and Information Security Officer

Hong Kong Permanent contract IT (Information Technology)

Responsibilities

Part of GBSU (Global Business Service Unit), the candidate will join the DCS team in charge of Data and Cyber Security aligned to regional Société Générale GBIS (Global Banking and Investors Solutions) Business Unit. This role acts as a subject matter expert on Cyber Surveillance, Efraud and Data Protection in the regional team managing Cybercrime, Application Security, Identity & Access Management, Technical surveillance and response to Security Incidents.

The candidate will be required to:
- Manage regional investigations, by executing sensitive enquiries relating to information security breaches (and fraud when required) in the Asia region. This will involve working across various stakeholder groups, including law enforcement. It will also include managing the Bank’s Cyber Attack response protocol and following up on other suspicious activity generated by the Bank’s detection systems.
- Manage the Bank’s suite of detection programs and dashboards. On a day to day basis, this will include tracking of alerts generated, as well as challenging responses made by the business lines. On a strategic front, it will involve identifying and managing enhancements to the existing programs in place. This would include scope expansions, regulatory change requests and rules modifications.
- Actively participate (and where required, provide leadership) in related projects.
- Provide support, where necessary on other information security related topics, relating to regulatory risk assessments, critical application reviews, user access recertification, awareness training and local audit matters.
- Actively participate in global 24/7 surveillance
- This role will require animating peer groups including IT Security, Human Resources, Legal, Compliance, Audit and the Business representatives. The candidate will have as well to align with global Data and Cyber Security teams to ensure consistency across the organization. Where required, the candidate will assist in senior management meetings and communications.

Profile required

ACADEMIC BACKGROUND AND CERTIFICATIONS, EXPERIENCE

Bachelor Degree in Information Technology or equivalent
Professional qualification such as CISM, CISSP, Ethical Hacker
Experienced Security Expert with 5-8 years of relevant experience

OPERATIONAL SKILLS

Key Skill Areas & Knowledge Required
- Investigation and forensic skills
- Overall understanding of I.T. infrastructure and I.T. applicative framework architectures
- Strong background of Information System Security and ability to understand complex issues quickly and set priorities according to technical as well as strategic considerations
- Project Management skills in complex matrix organizations
- Excellent English verbal and written communication skills.
- Ability to perform trainings to regional staff in order to reinforce the information security awareness
- Ability to write comprehensive and easy to understand incident reports destined to management, 2nd line and 3rd line ofdefence as well as regulatory bodies.
- Strong influencing skills to senior management up to and including MD level
- Sense of service; result orientated; reactivity; Innovative and bringing new ideas to improve processes

BEHAVIORAL SKILLS

  • Client - Risk: I strive to satisfy clients while taking into account risks for the company
  • Team Spirit - Collective mindset: I favour the team’s interest over my own results
  • Responsibility - Risk awareness: I am constantly on the lookout for risks 
  • Responsibility - Performance: I strive for high performance
  • Team Spirit - Open mindset: I listen and share my views and my expertise in an open mode
  • Innovation - Thinking out of the box/Creativity: I propose new ideas and solutions

Business insight

Societe Generale is one of the leading European financial services groups. Founded in 1864, we have been playing a vital role in the economy for over 150 years. With more than 133,000 employees based in 61 countries worldwide, we accompany 32 million clients throughout the world on a daily basis. Based on a diversified universal banking model, the Group combines financial strength with a strategy of sustainable growth.

ASIA-PACIFIC (ASIA), as one of the Business Units of Societe Generale, operates in 12 locations across the Asia Pacific region, employing over 2,500 employees with the regional headquarter located in Hong Kong. Our activities here are centered on Societe Generale's Global Banking & Investor Solutions pole (GBIS), a major growth engine for the Group and a key pillar of Societe Generale's universal banking model. Our expertise in Asia Pacific ranges from Corporate & Investment Banking (Advisory, Financing and Global Markets) to Asset Management, Global Transaction Banking and specialised financial services like Equipment & Vendor Finance and Vehicle Leasing & Fleet Management. In addition, Societe Generale's Global Solution Centre (SGGSC) in Bangalore and Chennai offers customised business solutions to the Societe Generale Group globally including ASIA.

Department Description
Reporting to the Global Business Service Unit (GBSU), the Data & Cybersecurity (DCS) is responsible for securing and steering Information Security and Cybersecurity related risks falling under Global Banking & Investor Solutions' (GBIS) remit. The team is based in Hong Kong and has transversal oversight on Asia Pacific.

We are an equal opportunities employer and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.

Reference: 22000STO
Entity: Societe Generale Hong Kong Branch
Starting date: immediate
Publication date: 2022/11/14
Share