About this role

About Black Rock

At Black Rock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.

This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to crafting an environment where our colleagues feel encouraged, valued and supported with networks, benefits and development opportunities to help them thrive.

Blackrock China Businesses

Black Rock’s purpose is to help more people experience financial well-being and the firm has a long history of investing in and serving investors in China. Black Rock aspires to become the leading global asset management firm operating in China and is committed to contributing to the long-term development of the local asset management industry. Black Rock has three (3) entities in China, namely Fund Management Company (FMC), Wealth Management Company (WMC) and Blackrock Enterprise Management (BEM), all of which are based in Shanghai. FMC and BEM are part of Blackrock while WMC is a joint venture with China Construction Bank (CCB).

Overview

This role is part of the APAC Information Security as a Technology Information Security Officer (TISO) supporting Blackrock China business entities. This is a newly formed and important role, supporting the APAC CISO to manage Information Security risks for the firm’s China businesses by designing and partnering the local Information Security teams to implement security controls, and providing technical and risk advisory leadership for stakeholders. This role will be based in Singapore.

What the ideal candidate looks like:

The Information Security Officer will perform the following responsibility:

• Partner with onshore CISO(s) and Information Security teams to continually assess and optimize Information Security controls to maintain Confidentiality, Integrity and Availability of the information assets of the onshore entities.

• Support line of business departments in adopting innovative technologies through sound security risk management and risks tradeoffs.

• Partner local Information Security teams to perform technical risk assessments for applications and infrastructure technology prior to their deployment to identify and mitigate potential security risks.

• Partner local Information Security teams to ensure security controls are factored into the development lifecycle of new applications and technologies.

• Advise local Information Security teams on secure configuration of all enterprise assets, including development of configuration baselines against operating environment.

• Consult and partner local Information Security teams to develop strategies for threat intel monitoring and effective management of emerging threats.

• Provide technical advice on operating secure infrastructure with a focus on cyber resiliency.

• Engage external entities for independent validation of security posture and perform security testing and validation of controls.

• Support compliance effort to comply with relevant laws and regulations, including regulatory inspections and audits.

• Partner local CISO(s) to develop security metrics and reports to support governance and management oversight of Information Security programs.

Additional Requirements:

• At least 8 years of experience in Cybersecurity Architecture and Engineering with exposure to China based business operations.

• Expertise in design & implementation of security controls in on-premises and cloud infrastructure.

• Experience in conducting Proof-of-Concept (PoC) for new cybersecurity technology.

• Expertise in developing new Cybersecurity controls to mitigate against emerging threats.

• Experience in performing technical risk assessments and advisory to local leadership.

• Good interpersonal skills with ability to communicate with senior leaders and local technology teams.

• Ability to work independently and adapt to changing business priorities and designing solutions with technology constraints.

• Meticulous and detail-oriented professional

• Proficiencies in multiple Information Security domains, especially Engineering and information security management qualifications, such as CISSP.

• Good understanding of fund management and wealth management related China Cybersecurity laws and regulations and cross-boarder data transfer regulations.

• Proficiency in English and Mandarin (Verbal/Written) is a key requirement

• Tertiary education with a degree in engineering or relevant field.

Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

Our hybrid work model

Black Rock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at Black Rock.

About Black Rock

At Black Rock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.

This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive.

For additional information on Black Rock, please visit @blackrock | Twitter: @blackrock | LinkedIn: www.linkedin.com/company/blackrock

Black Rock is proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to age, disability, family status, gender identity, race, religion, sex, sexual orientation and other protected attributes at law.