阿里云Alibaba Cloud-Senior Compliance Specialist-Hong Kong SAR
任职要求
1. Bachelor degree or above, major in information security or computer related in well-known universities at home and abroad is preferred; 2. At least 3 years of working experience in compliance, IT audit, IT risk management, etc. 3. Have knowledge base and capabilities for risk identification, analysis, remediation and management; 4. Have experience in large-scale international security audit, such as SOC, C5, OSPAR, K-ISMS, etc; 5. Have experience in technology risk advisory or similar client-facing experience is a plus; 6. Good project management ability, ability to quickly learn and achieve goals in a fast-paced environment; 7. Good communication skills, can use English and Mandarin as the working language, other language is a plus.
工作职责
1. Monitor and track global data security & compliance policies, analyze the requirements and impacts of policies on international cloud business, and work closely with headquarters to promote the certification of relevant policies and qualifications in the region or country to ensure business meet the compliance requirement; 2. Work closely with the regional business team to understand the customer compliance requirements, and coordinate with the headquarters to support; 3. Establish a routine communication mechanism with major national and regional compliance industry associations, and actively participate in the corresponding compliance activities and delivery of corresponding white papers; 4. Analyze global compliance updated policies, and share relevant compliance content for regional business teams and international staff; 5. Work as a project manager to conduct regional security & privacy compliance audits;
Unlike traditional bank AML environment, you would have the chance to work and experience how professional AML works in Ant Bank Hong Kong, the second largest technology based digital bank in Hong Kong and also to join the enegetic AML professional team under the market leading global financial group. Job Responsibilities: 1) Conduct Transactional Monitoring, Know-Your-Customer (KYC), Enhance Due Diligence (EDD) and/or name screening for onboarding, periodic and trigger review on bank customers / account opening applicants within the designated Service Level Agreements before escalatoin to MLRO and/or team lead, if needed. 2) Identify and conduct investigation on suspicious transactions which might relate to sanctioned individuals, money laundering or terrorist financing and prepare the investigation and/or due diligence review report on the risk associated during the end to end investigation / due diligence review process of the Bank. 3) Maintain proper AML/CFT KYC documentations and tracking logs for review and audit trial purpose. 4) Prepare documents for internal / external examination and audit review. 5) Assist the Bank's senior management, MLRO, and the team lead in their oversight and compliance with the Group and the Bank's internal policies and external regulations of Hong Kong. 6) Closely work with relevant stakeholders of the Group and the Bank on ad-hoc projects, such as without limitation, ongoing bank side AML/CFT operations control tasks, as assigned by the Bank MLRO and the team lead. 7) Provide staff training on AML/CFT related topics, policies and procedures.
1.Provide specialist payments legal advice and subject matter resources required to support the business. 2.Advise on compliance across all aspects of Singapore/Hong Kong/international payments laws and regulations, including license requirements. 3.Manage outside counsel for all payments projects. 4.Handle regulatory requests and manage working relationship with financial regulator(s). 5.Draft, review, negotiate and administer legal and commercial documentations. 6.Keep the business teams and internal stakeholders abreast of all new relevant laws and regulations that may have implications for the Company.
* Maintain comprehensive compliance program for PCI-DSS * Conduct regular internal data security audit and oversee the implementation of corrective actions * Partner with Legal, Product and other teams in both group and local level to ensure GDPR compliance (e.g. Cookie, DSR, DPIA ) * Develop and enforce local security policies and procedures that in line with ISMS * Promote security awareness through training, workshops and internal communications * Support data security incident response and facilitate preventive measure to reduce the likelihood * Daily security support to business teams
ASML China brings together the most creative minds in science and technology to develop lithography machines that are key to producing faster, cheaper, more energy-efficient microchips. The CRE Physical Security Operations Specialist is responsible for the strategical and tactical security operations to safeguard its assets in China, so ASML can accomplish its business goals in a secured environment. Our headquarters are in Veldhoven, the Netherlands, and we have 25 building locations around the China, including main offices and training centers in Shanghai, Beijing, and Shenzhen. Job Summary: The Corporate Real Estate Physical Security Operations Specialist ensures the safety and security of ASML’s assets and facilities in China. You will work across various security disciplines to support daily operations, safeguard assets, and enhance the company's security posture while maintaining business continuity and compliance with relevant regulations. Key Responsibilities: Security Operations Management: Presents complex Security topics in an understandable way, offering solutions and suggestions. Speaks up when risks, opportunities or concerns are identified that could impact goals, operations, or people. Effectively and independently manages complex tasks and projects. Has a solid foundation in internal and external stakeholder management, is able to understand different perspectives, can act upon those and can prioritize needs. Oversee daily physical security operations across ASML facilities in China, including offices and training centers. Manage security guards, access control systems, and security incident response procedures. Collaborate with third-party security providers and internal teams to ensure smooth operations and maintain high standards of physical security. Monitor and report on the performance of physical security systems and ensure they align with ASML's security policies. Policy & Standard Execution: Implement and enforce physical security policies, procedures, and standards across all locations in China. Regularly review and improve security protocols and recommend necessary changes based on evolving risks. Support the execution of ASML's security strategy and assist in setting operational goals. Risk & Incident Management: Proactively identify and assess physical security risks across ASML China locations. Lead and coordinate the response to security incidents, ensuring they are managed according to company protocols. Manage investigations related to security breaches and collaborate with local law enforcement if necessary. Stakeholder & Team Engagement: Develop and maintain relationships with key internal stakeholders, including facilities management, HR, and legal teams. Provide guidance and support to security guards and other security staff to ensure adherence to procedures. Engage with external stakeholders, including security vendors and law enforcement agencies, to address security issues and share updates. Training & Development: Assist in the training and development of security personnel to ensure consistent service and high standards of security practice. Lead training sessions on security protocols, incident response, and access control procedures. Continuous Improvement: Contribute to ongoing improvements in security processes, tools, and systems. Monitor trends and technologies in physical security and apply relevant innovations to improve ASML’s security operations.