Description on Risk Advisory

Risk management covers many areas including security and privacy, reputation and control. Our professionals help clients across many industries flag, analyze, evaluate and manage strategic and operational risks while discovering opportunities to create value. If you want to make an impact by helping clients to prevent and manage risk-related issues while creating significant value to their business this may be your chance.

风险管理涵盖诸多领域，包括安全与隐私、名誉和风险控制等。我们的专业服务人员帮助各个领域的客户在寻找创造价值的机会的同时也能标记、分析、评估和管理战略风险及运营风险。如果你渴望一个机会，通过帮助客户预防和管控风险相关因素进而为其业务创造巨大价值，这可能正是你需要的。

Job Description

Responsible for helping our clients to improve business confidence, manage and address information technologies related risks and ensure early warning mechanisms are in place through providing comprehensive information technologies related risk consulting services for a wide industries:
• Information technologies risk assessment,
• Information security assessment,
• Information system assessment,
• Information security consulting,
• IT governance and strategy consulting,
• Data quality, data modeling and data governance advisory
• Data analytics and related programming
• Business continuity management consulting,
• IT compliance consulting,
• Information technology risk control framework construction,
• Security audit,
• IT due diligence,
• Data security and privacy protection,
• Information system implementation

工作内容描述
负责为不同行业的客户提供各类与信息技术相关的风险咨询服务，包括信息安全咨询、信息科技风险评估、信息安全评估、信息系统评估、IT治理与战略咨询、数据质量、数据模型、数据分析及算法、业务连续性咨询、IT合规咨询、信息科技风控体系建设、信息安全审计、IT尽职调查、数据安全与隐私保护、信息系统建设与实施等，帮助客户增强经营信心，多方位的应对和处理与信息技术相关的信息科技风险，并保证预警机制完备健全，持续优化与改进。

任职资格：
Requirements
• Bachelor degree or above in any disciplines, with Information Management and Information Systems, Computer Science, Software Engineering, Information Security, Electronic and Information Technologies, Cyber Technologies, Math, Statistics or other related disciplines preferred
• Understands the basic concept of information security or methodology of IT audit is highly preferred
• Be familiar with security about application systems, database, operation systems, network, for those who have experience in cyber security or engaged in IT audit is preferred
• Has knowledge of software life cycle, system need, developing and testing is preferred
• Has knowledge of data warehouse developing and BI developing is preferred.
• Has knowledge of data management and data model developing is preferred.
• Has knowledge of J2EE platform, mobility development is preferred
• Fluency in Python, R, SAS, SQL or other programming languages is preferred.
• Experience in machine learning, data mining, large data sets and distributed computing (Hadoop) a plus.
• Be proficient in Microsoft Office software, include Word, Excel, PowerPoint, Visio, etc.
• Be able to use English as working language
• Strong academic performance
• Aspires to be a professional individual and demonstrated strong interests in our profession
• Quick learner, problem solver and team player
• Demonstrates ability to manage multiple tasks
• Be able to communicate effectively with colleagues as well as serving clients
• Demonstrates leadership potential at extra curriculum activities
• Willing to travel

• 具有任一学科的本科或更高学位：信息安全、网络安全、信息管理与信息系统、计算机科学、软件工程、电子与信息技术、计算机网络技术、数学、统计学相关专业更佳
• 了解信息安全、网络安全的基本概念或了解计算机审计方法论者优先
• 熟悉应用系统，数据库，操作系统，网络的安全或有IT审计相关经验者优先
• 具有系统实施经验，了解系统需求、系统开发、系统测试及软件生命周期者优先
• 具有数据仓库建设，商务智能开发等相关经验优先
• 具有数据管理经验，数据模型建设等经验优先
• 了解J2EE平台及移动端开发，具有相关代码开发经验者优先
• 熟悉Python、R、SAS、SQL等数据分析和数据库语言优先
• 具有机器学习、数据挖掘、大数据集和分布式计算经验优先
• 熟练掌握Microsoft等办公软件，包括但不限于MS Word/Excel/PowerPoint/Visio等
• 可以将英语作为工作语言使用
• 优异的学习成绩
• 渴望成为专业人士并有志于从事我们的行业
• 具有积极主动的学习热情，快速的学习能力，聚焦解决复杂的问题，善于与团队协同工作
• 具有同时处理多个项目的能力，责任心强
• 沟通能力强，妥善处理与同事和客户间的人际关系
• 具有领导与组织能力
• 愿意出差