Skip to the content

Business Security Manager

Hotel Brand: IHG Corporate Office
Location: Mainland China, Shanghai, Shanghai

Job number: CORPORATE05108

About Us

  • Provide security guidance to operations, functional, and technology partners to help them meet Information Security requirements
  • Proactively engage the businesses to identify, document and drive remediation of risks and non-compliant activities
  • Influence and support Information Security policies
  • Create and review security metrics to measure security effectiveness with Regional Leadership Teams
  • Monitor security violations and driving resolutions to security policy
  • Partnering with regional teams to ensure that technology systems are managed, operated and designed to minimize risk
  • Escalate significant risks to the Regional/Functional/Global IS Leadership for information or action
  • Act as point of contact to executive leadership for dimensioning, managing and driving remediation of information security risks
  • Facilitate, attend and participate in internal/external meetings and risk committees
  • Provide updates to business groups, partners and senior management through established communication channels
  • Ensure compliance to security practices & standards. Reducing likelihood of audit findings, regulatory & legal liabilities
  • Engage with cross sector, regional, global risk and control teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues
  • Ensure timely engagement and delivery on information security, business and/or technology initiatives and projects

Your day to day

Educational Attainment:

  • Bachelor’s degree with progressive work experience in Information Security, Computer Science/MIS/IT, Business Administration or Engineering or equivalent combination of education and work related experience

Critical Expertise & Experience:

  • 7+ years of Information Security and/or Risk Management experience
  • Working knowledge of security frameworks, assurance schemes and regulations (such as NIST, Classified Protection of CyberSecurity, CSF, 27001/2, PCI-DSS, and OWASP, etc.)
  • IS certifications preferred (CISSP, CISM, CISA or Equivalent), current or previous
  • Ability to provide subject matter expertise in Information Security topics to senior management, technology and business partners
  • Results oriented, is able to achieve desired outcomes independently and at appropriate priority levels
  • Experience in engaging cross functional working partnerships in a global organization
  • Strong influencing/consensus building and analytical skills
  • Strong leadership, team building, interpersonal and communication skills

Back to top