Galaxy Entertainment Group Limited (“GEG” or the “Company”) and its subsidiaries (“GEG” or the “Group”) is one of the world’s leading resorts, hospitality and gaming companies. The Group primarily develops and operates a large portfolio of integrated resort, retail, dining, hotel and gaming facilities in Macau. GEG is listed on the Hong Kong Stock Exchange and is a constituent stock of the Hang Seng Index.GEG through its subsidiary, Galaxy Casino S.A., is one of the three original concessionaires in Macau when the gaming industry was liberalized in 2002. In 2022, GEG was awarded a new gaming concession valid from January 1, 2023, to December 31, 2032. GEG has a successful track record of delivering innovative, spectacular and award-winning properties, products and services, underpinned by a “World Class, Asian Heart” service philosophy, that has enabled it to consistently outperform the market in Macau.The Group operates three flagship destinations in Macau: on Cotai, Galaxy Macau™, one of the world’s largest integrated destination resorts, and the adjoining Broadway Macau™, a unique landmark entertainment and food street destination; and on the Peninsula, StarWorld Macau, an award-winning premium property.The Group has the largest development pipeline of any concessionaire in Macau. When The Next Chapter of its Cotai development is completed, GEG’s resorts footprint on Cotai will be more than 2 million square meters, making the resorts, entertainment and MICE precinct one of the largest and most diverse integrated destinations in the world. GEG is also progressing plans for its Hengqin project and we are also expanding our focus beyond Hengqin and Macau to potentially include opportunities within the rapidly expanding Greater Bay Area. These projects will help GEG develop and support Macau in its vision of becoming a World Centre of Tourism and Leisure.In July 2015, GEG made a strategic investment in Société Anonyme des Bains de Mer et du Cercle des Étrangers à Monaco (“Monte-Carlo SBM”), a world renowned owner and operator of iconic luxury hotels and resorts in the Principality of Monaco. GEG continues to explore a range of international development opportunities with Monte-Carlo SBM.GEG is committed to delivering world class unique experiences to its guests and building a sustainable future for the communities in which it operates. For details, please refer to the section on Corporate Social Responsibility.Position SummaryThe Senior Manager - Strategy & Governance is responsible for protecting GEG's information assets. He/she will work under the supervision and guidance from the Assistant Vice President to provide support to the development, management and implementation of corporate-wide information security controls.Primary Responsibility
Plan, coordinate and drive information security programs among the teams
Define a world class information security strategy for GEG, focusing on Attack Mitigation, Incident Detection, Risk Remediation, and etc
Define and recommend information security policies for approval by management
Align information security framework with the GEG business strategy and objectives
Promote information security awareness among the GEG
Lead Information Security Incident Management Process from identification, analysis, containment, eradication, communication and reporting. Working with internal and external parties to identify the root cause and design the mitigation measures
Manage information security risk portfolio with IT Risk Compliance Manager, and work with other team to make sure all the risks are properly addressed
Plan and manage team skills through training and acquisition of new talent where appropriate
Manage, mentor and inspire the information security team members to deliver high quality results
Update the management and major stakeholders with latest information security trends, threat, and solutions
Communication – timely and effective communication with senior management
Requirements
Bachelor's degree in computer science, computer engineering, systems analysis, or a related study, or equivalent experience
6 or more years of experience in not less than one IT discipline including, but not limited to; application support, application development, data analysis, data center, servers and storage, networking, middleware, database management, IT operations, etc
Excellent written and verbal communication skills with an excellent ability to communicate in English. The ability to communicate in Cantonese and/or Mandarin will be an advantage
Excellent planning and organizational skills
Excellent interpersonal skills, including teamwork, facilitation and negotiation
Strong leadership skills
Excellent analytical and technical skills
Excellent ability to translate business needs into technical requirements
Excellent problem solving skills
Excellent customer service skills
Excellent knowledge of financial models and budgeting
Excellent ability to tactfully and positively manage and maintain business relationships
Have at least 5 years experiences in information security management domains
CISSP or CISM is a must; CRISC or CISA certifications is an added advantage