Deputy Chief Information Security Officer - VASP

Company Overview: NewBX is a deemed-to-be-licensed VASP regulated by the Securities and Futures Commission (SFC) of Hong Kong.

Role Overview: The Deputy CISO will work closely with the CISO to develop and execute NewBX's security strategy. This role protects information assets, ensures regulatory compliance, and strengthens operational resilience. The ideal candidate is a strategic leader with proven expertise in cybersecurity, blockchain security, risk management, and regulatory compliance in the financial sector.

Key Responsibilities:

• Strategic Security Leadership: Develop and implement a comprehensive security strategy aligned with NewBX's business objectives and regulatory obligations.
• Regulatory Compliance: Ensure adherence to all relevant SFC regulations and guidelines, maintaining up-to-date knowledge of regulatory changes and implementing necessary adjustments to security policies and procedures.
• Risk Management: Identify, assess, and mitigate security risks across all aspects of the organization, including information systems, physical assets, and personnel.
• Incident Response: Establish and oversee incident response protocols to effectively manage and resolve security breaches or threats.
• Team Leadership: Lead and mentor the security team, fostering a culture of security awareness and continuous improvement.
• Stakeholder Communication: Serve as the primary point of contact for security-related matters, communicating effectively with internal stakeholders, regulatory bodies, and external partners.

Qualifications:

• Education: Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degrees or relevant certifications (e.g., CISSP, CISM) are highly desirable.
• Experience: Minimum of 10 years of experience in information security, with at least 5 years in a leadership role within the financial services industry.
• Regulatory Knowledge: In-depth understanding of SFC regulations and compliance requirements for licensed financial institutions in Hong Kong.
• Technical Expertise: Proficiency in blockchain security (HSM operations), cybersecurity frameworks, risk assessment methodologies, and incident response strategies.
• Leadership Skills: Proven ability to lead cross-functional teams, manage complex projects, and influence organizational change.
• Communication Skills: Excellent verbal and written communication skills, with the ability to convey complex security concepts to non-technical stakeholders. Proficiency in both Mandarin and English is considered an advantage.

NewBX is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. Only shortlisted employees will be contacted.