About The Business
We are seeking a highly motivated and experienced Manager or Senior Manager to join our Business Security team, based in Hong Kong. The successful candidate will play a key role in supporting the Business Security Lead (BSL) in ensuring compliance with Hong Kong and Macau regulatory requirements, particularly in areas related to data privacy, cybersecurity, and information governance. The role will focus on regulatory engagement, policy development, cross-regional collaboration, and driving security awareness across the organization.
This is a strategic position that requires a strong understanding of local regulatory frameworks, excellent communication skills, and the ability to work effectively across multidisciplinary teams in a dynamic professional services environment.
Work you'll do
Regulatory Compliance & Engagement
Serve as the primary point of contact for Hong Kong and Macau regulatory compliance matters, including but not limited to the Anti-Financial Crime (AFC) requirements, Personal Data (Privacy) Ordinance (PDPO), and other relevant data protection and cybersecurity regulations.
Liaise with internal stakeholders and external regulators as needed, managing communications, incident reporting, and compliance submissions.
Monitor changes in local laws and regulations and assess impact on Deloitte's operations in Hong Kong and Macau.
Policy & Procedure Development
Lead the design, review, and updating of business security policies and procedures tailored to the Hong Kong and Macau jurisdictions.
Ensure alignment of English-language policies within Deloitte China with local regulatory expectations and global standards.
Support translation and localization efforts where necessary, ensuring clarity and compliance.
Incident Management & Training
Support the BSL in managing data privacy and security incidents, including investigation coordination, reporting, and remediation.
Develop and deliver targeted training and awareness programs for staff in Hong Kong and Macau on data protection, confidentiality, and cyber hygiene.
Regional Collaboration
Act as a key liaison between the Greater China Business Security function and the Asia-Pacific (APAC) Business Security Community, facilitating knowledge sharing, best practices, and coordinated responses to regional risks.
Participate in cross-border initiatives related to cyber resilience, third-party risk, and privacy governance.
During your tenure with us, you will demonstrate and develop your leadership and professional capabilities in the following areas: Inspiring, Creating purpose, Driving agility, Building diverse capability, Influencing, Collaborating, Delivering value, Building the business, Analytical acumen, Effective communication, Engagement management/delivery excellence, Managing change, Managing quality & risk, Sales excellence, Strategic thinking and problem solving, and Tech savviness.
We are looking for someone with
Bachelor's degree or higher in Accounting, Business Law, Information Security, or a related discipline; professional qualifications (e.g., CPA, PCLL, CIPP, CISA, CISSP) are highly desirable.
Minimum of 6–8 years of relevant experience in regulatory compliance, data privacy, IT risk management, or cybersecurity, preferably within a multinational corporation, financial institution, or professional services firm.
Demonstrated experience with Hong Kong data protection laws (PDPO), anti-financial crime frameworks, and cybersecurity regulations. Familiarity with Macau's regulatory landscape is a plus.
Solid understanding of data privacy principles, confidentiality, information security frameworks (e.g., ISO 27001), and IT risk management practices.
Experience in policy development, incident response, and employee training programs related to security and compliance.
Strong project management and stakeholder engagement skills, with the ability to work independently and across teams.
Proficiency in spoken and written Chinese (Cantonese and Mandarin) and English.
Shape your future through impact that matters
For more than 100 years of history, Deloitte witnessed also had the honor to be part of the economic boom in China by providing industry-leading audit & assurance, consulting, risk advisory, financial advisory, tax & business advisory services to nearly 90% of the Fortune Global 500 Chinese companies and thousands of private companies. Deloitte China today carries on our centenary professionalism and strives to become the undisputed leader in professional services in China with strong responsibility and capabilities in digitalization and multidisciplinary services.
Deloitte has been named China's Top Employer since 2006, Universum's Most Attractive Employer in China since 2008, and the Best Workplaces in Greater China since 2019.
All qualified applicants will receive consideration for employment regardless of their background, experience, identity, ability or thinking style, and if you need assistance during the application process for accessibility reasons this is available upon request. The preferred candidate will be subject to background screening by Deloitte China or by their external third-party provider.
Accessibility assistance
If you need assistance or an accommodation during the recruitment process for accessibility reasons, there will be an opportunity for you to let us know what you need once you begin your application.
Ready to take on new challenges? Apply now
Stay connected for the latest career opportunities, follow us on Deloitte China Social Media.
Show more Show less