top of page

Cyber Resilience Lead Leading Financial Institution

IT Security & Risk

8 September 2023

Hong Kong

Our client, a leading financial institution is looking for a Cyber Resilience Lead who will be responsible for driving the cyber resilience strategy and program. This will involve collaborating with various stakeholders, including technology teams, business units, and senior management, to strengthen the overall cyber resilience framework. The successful candidate will develop and implement policies, procedures, and incident response plans to enhance the organization's ability to prevent, detect, respond to, and recover from cyber threats.


  • Develop and implement a comprehensive cyber resilience program aligned with industry best practices and regulatory requirements.

  • Define and maintain cyber resilience policies, procedures, and guidelines to drive a proactive approach to cyber risk management.

  • Collaborate with technology teams to identify and assess potential cyber risks across systems, networks, and applications.

  • Conduct regular gap assessments and risk assessments to identify vulnerabilities and prioritize resilience enhancements.

  • Design and implement incident response plans, including communication protocols, escalation procedures, and coordination with internal and external stakeholders.

  • Lead and coordinate the response to cyber incidents, ensuring timely detection, containment, and remediation.

  • Conduct regular cyber resilience training and awareness programs to educate employees on security best practices and response protocols.

  • Stay up-to-date with emerging cyber threats and industry trends to proactively identify and address potential vulnerabilities.

  • Ensure compliance with relevant regulations and frameworks, such as the Hong Kong Monetary Authority's Cybersecurity Fortification Initiative.

  • Continuously monitor and measure the effectiveness of the cyber resilience program, utilizing metrics and key performance indicators.


  • Bachelor's or Master's degree in Cybersecurity, Information Technology, or related field.

  • At least 8 years of experience in cybersecurity, with a focus on cyber resilience, incident response, or business continuity.

  • Strong knowledge of the cyber threat landscape, attack vectors, and countermeasures.

  • Experience in developing and implementing cyber resilience frameworks, policies, and procedures.

  • Excellent understanding of industry regulations and best practices, including the Hong Kong Monetary Authority's guidelines.

  • Solid understanding of financial services operations, systems, and technology infrastructure.

  • Professional certifications such as CISSP, CISM, or CRISC are highly desirable.

  • Strong leadership, communication, and problem-solving skills.

  • Ability to collaborate effectively with both technical and non-technical stakeholders.

  • Fluency in English and Chinese (Cantonese and Mandarin), both spoken and written.

bottom of page