Home
/
Comprehensive
/
Cyber & Technology Risk Management Manager, China
Cyber & Technology Risk Management Manager, China-March 2024
Virtual
Mar 29, 2026
About Cyber & Technology Risk Management Manager, China

  About the Role:

  Grade Level (for internal use):

  11

  The Role: Cyber & Technology Risk Management (CTRM) Manager, China

  The Impact:

  This role will join the China Risk & Compliance team as 2nd Line of Defense, with focus on the China domestic regulated business/cyber and technology control environment.

  Along with excellent interpersonal skills, exceptional communication style and the ability to influence key stakeholders, the successful candidate will have strong expertise and hands-on cyber and technology risk management experience. Experience in Compliance and Regulatory Engagement in the financial related sector is also critical to this role.

  Responsibilities:

  Update and maintain the China tailormade Cyber & Technology Risk management Framework and develop associated operating procedures to define risk appetite, tolerance, and other critical risk management measures.

  Partner with Subjected Matter Experts locally (e.g., China Technology/Information Security) and globally (e.g., Global Cyber and Technology Risk Management) to operationalize cyber and technology risk management processes for the China technology environment. Drive the implementation of risk identification, assessment, mitigation, and monitoring, through established processes including but not limited to Key Risk Indicator, Risk Registration, etc.

  Provide advice to business/1st Line of Defense on adherence to S&P Global policies and applicable laws mainly China Cyber Security Law, Data Security Law, and Personal Information Protection Law, etc. and associated regulations. Provide support on internal audit and regulatory compliance readiness (e.g., PBOC or CSRC onsite review, MLPS certification, etc.) and act as an experienced contact personnel interacting and communicating with these parities.

  Perform risk oversight and conduct cyber and technology risks and controls assessment to evaluate control effectiveness, and for identified control deficiencies hold risk owners accountable for developing risk mitigations as well as completing remediation.

  Develop and deliver cyber and technology risk reporting metrics/dashboard to management to support risk informed and data-based decision on information security and technical implementation.

  Support SPGI Global Privacy Compliance and Privacy Legal teams with China local regulatory data governance and data localization requests.

  What We’re Looking For:

  Degree in either Computer Engineering, Computer Science, or Information Systems Management

  Minimum 5 - 7 years of solid working experience in general technology risk management and information security, covering at least the following aspects.

  technology risk governance (e.g., risk management framework, policy, standard, procedure and process establishment and implementation, key risk metrics development, implementation and reporting, etc.)

  risk controls assessment with respect to cloud-based applications / infrastructure, as well as risk mitigation development and follow-up.

  China local regulatory requirements implementation, such as Multi-Level Protection of Information Security (MLPS) certification and related data governance and data localization requirements, etc.

  Compliance and Regulatory interactions and engagements, such as handling of regulatory inquiry/request, reporting, onsite inspection, etc.

  Experience in the financial related sector, particularly credit ratings agency and financial information service industry is desirable but not a must.

  Thorough understanding of cyber and technology risk related China laws, regulations, and standards including but not limited to the China Cyber Security Law (CSL), Data Security Law (DSL), Personal Information Protection Law (PIPL), etc.

  Familiar with cyber security frameworks such as NIST CSF, ISO-27001 and / or NIST 800-53 Rev 4, or privacy frameworks such as NIST Privacy Framework, China GB/T DCMM and DSMM, or equivalent.

  Information Security and technology risk management related certification (e.g., ISC2 CISSP, ISACA CISA, SANS/GIAC, ISACA CRISC,) is desirable but not a must.

  Organization skills with the ability to multi-task and identify priorities, coordinate, and work with cross-functional global and local teams and execute on schedule. Comfortable working in a fast-paced, exciting environment.

  Strong communication, negotiation and presentation skills are necessary.

  Fluency (written, spoken, and read) in Mandarin and English.

  What’s In It For You?

  Our Purpose:

  Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world.

  Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress.

  Our People:

  We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all.

  From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference.

  Our Values:

  Integrity, Discovery, Partnership

  At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals.

  Benefits:

  We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global.

  Our benefits include:

  Health & Wellness: Health care coverage designed for the mind and body.

  Flexible Downtime: Generous time off helps keep you energized for your time on.

  Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.

  Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.

  Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families.

  Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.

  For more information on benefits by country visit: https://www.spglobal.com/en/careers/our-culture/

  Diversity, Equity, and Inclusion at S&P Global:

  At S&P Global, we believe diversity fuels creative insights, equity unlocks opportunity, and inclusion drives growth and innovation – Powering Global Markets. Our commitment centers on our global workforce, ensuring that our people are empowered to bring their whole selves to work. It doesn’t stop there, we strive to better reflect and serve the communities in which we live and work, and advocate for greater opportunity for all.

  

Equal Opportunity Employer

  S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment.

  If you need an accommodation during the application process due to a disability, please send an email to:  [email protected]  and your request will be forwarded to the appropriate person. 

  US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf   describes discrimination protections under federal law.

  

20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.2 - Middle Professional Tier II (EEO Job Group)

  Job ID: 295517

  Posted On: 2024-01-15

  Location: Beijing, China

Comments
Welcome to zdrecruit comments! Please keep conversations courteous and on-topic. To fosterproductive and respectful conversations, you may see comments from our Community Managers.
Sign up to post
Sort by
Show More Comments
SIMILAR JOBS
Bakery Associate Team Leader (Assistant Department Manager)
Job DescriptionAssists the Team Leader in all aspects of daily operations including profitability, expense control, buying, merchandising, labor, regulatory compliance and special projects as assigne
Housekeeper
Positions available at the BAVARIAN INN LODGE. Cleans and maintains guest rooms and other public areas to prepare for occupancy and use. Must be able to work weekends and holidays.  ...
Correctional Officer
Basic Correctional Officer Requirements: oral communicationinterpersonal sillswritingorganizational awarenessmanaging human resourcesstress toleranceFor Consideration at the GS-05 Level: The be consi
Pharmacy Technician & Technician Trainee - JR026345
*Pharmacy TechnicianTechnician in Training*Contribute to our mission to improve Health and Wellness in your community.Become a Rite Aid Pharmacy Technician today!As a Pharmacy Technician in Training,
Porter, Store 177
Overview: The primary duty of a Porter is to promote Conn’s products through excellent customer service and warehouse support. Porters are experts in our products, with product categories including e
Cancer Registrar- OQE - Cancer Registry
Description Become part of an inclusive organization with over 40,000 diverse employees, whose mission is to improve the health and well-being of the unique communities we serve. Summary: This positi
Physician Clinical Reviewer- GI - REMOTE
Our work matters. We help people get the medicine they need to feel better and live well. We do not lose sight of that. It fuels our passion and drives every decision we make. Job Posting Title Physi
Critical Operating Engineer
Job Title: Operating EngineerReports To : Chief EngineerSummary of Job Description:This position will require strong technical, mechanical and administrative skills necessary to operate and maintain
Supply Chain Tech
ResponsibilitiesThe Supply Chain Technician I, is an entry level position that is responsible for providing centralized receipt, storage and distribution service for supplies, linen and equipment req
Greenhouse Worker/Trabajadores de invernadero
Greenhouse workers needed to plant, cultivate, harvest and transplanting variety of stock - hanging baskets, bedding plants and vegetables. Other Greenhouse Worker activities include greenhouse plant
OTHERS JOBS
About
Terms and Conditions Privacy policy Cookie Settings Contact Us
Services
Login register
zdrecruit Project Management Advertising and Marketing Education Sales
Links
zpostcode Recruit weather mreligion Yellowpages sport constellation shopping name game directory literature Word tour furnish Lottery tftnews lyrics News digital car dir Edu Finance
Copyright 2023-2026 - www.zdrecruit.com All Rights Reserved