Senior / Manager - IT Audit & Assurance (Fintech Assurance/Cyber) - Hong Kong

Pursue a Career with Impact

At Deloitte China, we are on a mission to nurture and empower our people to become deep subject matter experts. We offer the perfect platform to unleash your full potential and equip you to thrive on challenges, and partner with our clients to solve their most complex problems. A world of opportunities awaits. Start your adventure and journey with us.

About The Business

IT Audit & Assurance covers many areas including security and privacy, reputation and control. Our professionals help clients across many industries flag, analyze, evaluate and manage strategic, technology, operational and fraud risks while discovering opportunities to create value. If you want to make an impact by helping clients to prevent and manage risk-related issues while creating significant value to their businesses this may be your chance to start a remarkable career.

We bring world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. In the digital era, technology innovation and business are inextricably connected to each other. Given the high demand of technology-enabled business, Deloitte professionals help our clients facing the most critical information and technology challenges in their business. Joining our Fintech Assurance Team in IT Audit & Assurance, we are looking for the energetic professionals joining our team for assisting our clients in optimizing the business needs and strategy through technology.

Work you'll do

Execute a wide range of risk assurance engagements, including but not limited to:

• Conduct cybersecurity health check, regulatory compliance review and technical assessment for  banks, crypto exchange operator, securities firm, insurance company, and multinational corporation in accordance to regulatory requirements (e.g. HKMA, SFC) and industry standards (e.g. SWIFT CSCF)
• Perform internal control review/System and Organization Controls audit

• Prepare written reports on projects work-done and recommendations, and present such to the project stakeholders/ senior managements of our clients

  
  

  Assist in business and team development, including:

• Conduct research on latest fintech/cybersecurity trend
• Maintain client relationship and handle potential opportunities
• Support team members in professional development

We are looking for someone with:

• Degree holder in Information Technology, Engineering, Computer Science, Accounting, Business or other related disciplines
• At least 2 years in IT audit, technology risk management and/ or other related discipline
• Holder of certifications such as CISA, CISSP, OSCP, CEH, GPEN, CIPM, CIPT, CBSP, CIA, , CCSP, CCSK, CCAK, Azure/AWS-related certification, and/or other related certifications would be an advantage
• Solid technical and / or cyber security knowledge, such as IT governance, technology risk and controls, system and network architecture, IT/security operations

Experience and exposure in below areas would be an advantage:

• Regulations and industry standards including HKMA, SFC, IA, ISO 27000 family, NIST Cybersecurity Framework;

• technical assessment, including penetration testing, vulnerability scanning, source code review, stress test;

  emerging technologies, including artificial intelligence, blockchain, cloud, etc;

• Good communication and presentation skills
• Good command of spoken and written English and Chinese

• Candidates with less experience will be considered as Senior Consultant