外资科技企业
China CISO
制造业
网络安全
上海
10年以上
本科
面议
公司介绍
外资科技企业
职位描述
Role Overview
The is a China CISO role for the organization in China, responsible for safeguarding critical information, digital assets, and technology in alignment with the company’s global security direction. This role shapes and executes the national security roadmap, ensuring that security practices across China meet corporate expectations and local regulatory requirements.
This role coordinates a cross‑functional security network within the country, bringing together key stakeholders from various business and technical domains to jointly elevate security maturity and ensure consistent execution of security initiatives.
Key Responsibilities
Leadership & Governance
- Lead the security function in China on behalf of global security leadership, ensuring effective delivery of security services and oversight of security controls.
- Adapt and implement global security strategies to address China‑specific risks and operational needs.
Risk Management
- Partner with local security and business teams to identify, assess, and mitigate security risks.
- Drive continuous improvement of security processes and risk‑related activities across the organization.
- Facilitate collaboration between different security stakeholders to ensure alignment and effective risk handling.
Incident Preparedness & Response
- Oversee the development and execution of China‑specific incident response procedures.
- Ensure timely coordination with global security operations during security events.
Compliance & Regulatory Alignment
- Ensure adherence to relevant security policies, standards, and applicable local regulations.
- Monitor compliance performance and support remediation where needed.
Capability Building & Awareness
- Strengthen security capabilities within China by supporting training, awareness programs, and risk‑culture initiatives.
- Prepare consistent security reporting for local leadership and maintain alignment with global security functions.
Stakeholder Engagement
- Provide regular updates to senior management on security posture, risks, and program progress.
- Maintain strong relationships with internal teams and external partners, including vendors and industry groups.
Training & Travel rate
- Deliver general security awareness training to employees in China.
- Occasional travel within China and internationally (approx. 15%).
职位要求
Role Overview
The is a China CISO role for the organization in China, responsible for safeguarding critical information, digital assets, and technology in alignment with the company’s global security direction. This role shapes and executes the national security roadmap, ensuring that security practices across China meet corporate expectations and local regulatory requirements.
This role coordinates a cross‑functional security network within the country, bringing together key stakeholders from various business and technical domains to jointly elevate security maturity and ensure consistent execution of security initiatives.
Key Responsibilities
Leadership & Governance
- Lead the security function in China on behalf of global security leadership, ensuring effective delivery of security services and oversight of security controls.
- Adapt and implement global security strategies to address China‑specific risks and operational needs.
Risk Management
- Partner with local security and business teams to identify, assess, and mitigate security risks.
- Drive continuous improvement of security processes and risk‑related activities across the organization.
- Facilitate collaboration between different security stakeholders to ensure alignment and effective risk handling.
Incident Preparedness & Response
- Oversee the development and execution of China‑specific incident response procedures.
- Ensure timely coordination with global security operations during security events.
Compliance & Regulatory Alignment
- Ensure adherence to relevant security policies, standards, and applicable local regulations.
- Monitor compliance performance and support remediation where needed.
Capability Building & Awareness
- Strengthen security capabilities within China by supporting training, awareness programs, and risk‑culture initiatives.
- Prepare consistent security reporting for local leadership and maintain alignment with global security functions.
Stakeholder Engagement
- Provide regular updates to senior management on security posture, risks, and program progress.
- Maintain strong relationships with internal teams and external partners, including vendors and industry groups.
Training & Travel rate
- Deliver general security awareness training to employees in China.
- Occasional travel within China and internationally (approx. 15%).
咨询顾问
Shawn Cong
团队经理-IT & Cyber Security
分享