Cyber & Technology Risk Manager
Hong Kong (SAR)
Mox Bank
With Mox, every day counts as we’re here to help you grow your money, your world, your possibilities. Join Generation Mox now to experience a new way of smarter banking, saving and spending.
Cyber & Technology Risk Manager
Mox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.
Why Mox
Everything at Mox – from our products, features, to rewards – is designed based on customer research, tailor made for your needs. We care about what customers care about, especially in data security and privacy. Data ethics is core to everyone here at Mox. Mox rewards you with an array of banking and lifestyle benefits. Who says banking can’t be fun?
What we are looking for?
As the Cyber and Technology Risk Manager, you are responsible to assist in managing cyber risks arising from our use of technology. This will include areas such as the way we build our technology stack, manage our cyber/IT controls, operate our platforms, integrate with third parties and maintain compliance with our regulations.
Application Deadline: 25 August 2025
Department: Technology-CDSIO
Employment Type: Permanent - Full Time
Location: Hong Kong (SAR)
Description
About MoxMox is built by and for the ones who aspire to live life to the fullest – we call them Generation Mox! The name Mox reflects the endless opportunities we can create, - Mobile eXperience; Money eXperience; Money X (multiplier), eXponential growth, eXploration… it’s all up for us to define together.
Why Mox
Everything at Mox – from our products, features, to rewards – is designed based on customer research, tailor made for your needs. We care about what customers care about, especially in data security and privacy. Data ethics is core to everyone here at Mox. Mox rewards you with an array of banking and lifestyle benefits. Who says banking can’t be fun?
What we are looking for?
As the Cyber and Technology Risk Manager, you are responsible to assist in managing cyber risks arising from our use of technology. This will include areas such as the way we build our technology stack, manage our cyber/IT controls, operate our platforms, integrate with third parties and maintain compliance with our regulations.
Responsibilities
- Facilitate and manage the Technology and Cyber risk control framework within a fast-paced technology banking environment.
- Assess Technology and Cyber issues using a risk-based methodology and provide recommendations for remediation actions
- Engage and collaborate with technology, business, and lines of defence to ensure that risk items are appropriately addressed and maintained in line with the risk management framework and risk appetite.
- Assist with managing initiatives to assess Bank-wide projects and determine technology/cyber risk control effectiveness.
- Advise on and challenge control matters such as control audits and assessment and control metrics as required.
- Drive initiatives to discover, assess and report on new and existing risk matters.
- Support the Cyber Leadership team in providing a focal point of managing cyber risk in the virtual bank, including the design of effective controls and the systematic monitoring of risks.
- Cross-skill and work closely with Cyber Risk personnel to wholistically manage overlapping duties or responsibilities such as risk assessments, governance reporting and new evaluation of new Mox initiatives.
- Coach and mentor risk and/or other staff members to allow them to develop their Tech and Cyber risk knowledge.
- Be a change agent by making risk management relevant to everyone in a clear and succinct manner as we seek to further embed control culture. This may include training delivery and participation in awareness campaigns.
- Be open to change over time as we in turn adopt our strategy to meet ever-changing control and regulatory landscape.
Requirements
- · Deep understanding of information security controls and their relevance to address cyber/technology risks
- · Experience in Technology governance, risk management, or operational risk
- · Passionate about new technology and risk management
- · Hands on experience performing assessments on organizational technology and cyber posture
- · Working knowledge of fundamental IT control principles such as Change Management, SSDLC, Patch Management, system testing, Incident Management, etc.
- · Experience and understanding of reporting principles such as metrics development and problem management.
- Possess strong interpersonal and communication skills and display initiative to lead discussions with operational staff at all levels, business leaders and colleagues
- Excellent written and verbal communication skills, proactive, interpersonal and collaborative skills, and the ability to communicate cyber and technology risk concepts to technical and nontechnical audiences at various hierarchical
- Strong control mindset and is confident to be the go-to person on cyber and technology risk matters
- Able to provide effective challenge and recommendations whilst building strong, respectful relationships across different functions
- Ability to activiely participate in and motivate the information security team to achieve tactical and strategic goals with a team player mentality
- Thrive in a fast paced, demanding, multi-cultural environment where the day-to-day job differs and flexibility is key.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
4
0
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits Banking Compliance Governance Monitoring Privacy Risk assessment Risk management RMF Security Assessment Report SSDLC Strategy
Region:
Asia/Pacific
Country:
Hong Kong
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsSenior Cloud Security Engineer jobsSystems Administrator jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsIT Security Analyst jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Network Security Engineer jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSecurity Specialist jobsIT Security Engineer jobsSenior Cyber Security Engineer jobsSenior Software Engineer jobsCyber Threat Intelligence Analyst jobsCybersecurity Specialist jobsSenior IT Auditor jobsCyber Security Architect jobsSecurity Operations Analyst jobs
EDR jobsEncryption jobsTS/SCI jobsCEH jobsJava jobsThreat detection jobsSDLC jobsSplunk jobsTerraform jobsIDS jobsMalware jobsFinance jobsIPS jobsRMF jobsTop Secret jobsForensics jobsSQL jobsDocker jobsSOC 2 jobsActive Directory jobsCompTIA jobsIntrusion detection jobsOWASP jobsITIL jobsCRISC jobs
Clearance Required jobsGIAC jobsHIPAA jobsTCP/IP jobsAnsible jobsVPN jobsDoDD 8570 jobsSOAR jobsIT infrastructure jobsOSCP jobsMITRE ATT&CK jobsData Analytics jobsJira jobsDNS jobsSOX jobsBanking jobsUNIX jobsCCSP jobsZero Trust jobsIndustrial jobsJavaScript jobsCISO jobsGCIH jobsMachine Learning jobsArtificial Intelligence jobs