⚠️ Please send the cover letter and CV to: [email protected] ⚠️

What can you expect?

• You will join an international team of cyber security experts helping our clients with all aspects of their cyber security programs, and contributing toward their business resilience.
• You will be flexible and ready to adapt to a constantly changing environment, sharing your time between reviewing cyber strategies, advising stakeholders, leading workshops, as well as supporting business development and marketing.
• Immediate exposure to top tier clients and excellent opportunities for personal and professional development.
• Since you will be working directly with clients, some travel will be required.

What is in it for you?

• Leverages advanced knowledge of industry trends around cyber risk management to develop actionable insights into a client's cyber environment.
• Professional and inclusive environment where your career path really matters and is supported in our global organization. Staff development is paramount to our organization.
• Great environment with close knit, energetic and supportive colleagues.
• Learning opportunities to develop the skills to navigate whatever comes next.

We will count on you to:

• Support in end-to-end delivery of the cyber risk consulting projects which includes cyber risk assessment, cyber security incident response and table top exercise, cyber security initiatives, cyber risk quantification and others:
• Perform cyber security assessments for clients (e.g. security risk assessments, information security policies and processes/procedures review etc.)
• Evaluate and analyze threat, vulnerability, impact and risk to security issues discovered from security assessments
• Advising on the cyber security incident response process, creating and delivering table-top exercise, incident response plans and playbook
• Have excellent understanding of cyber security tools across the different environments
• Evaluate and recommend information security technologies to improve Marsh’s clients security posture
• Review clients’ compliance through an on-going security and audit review
• Any other technical duties as assigned
• Conduct research on the client’s cybersecurity risk areas.
• Explain the technical details and how vulnerabilities can be remediated.
• Understand different domains within cybersecurity space, stay abreast of current business and industry trends relevant to the client's business.
• Contribute in research support for building a robust deliverables.
• Provide advisory support to client on the development of appropriate cyber security initiatives, and the presentation of the initiatives to business stakeholders.
• Assist in the implementation of the cyber security initiatives
• Assist with technical implementation across various domains, including security incident management, vulnerability management, risk management, security standards and frameworks, for example ISO 27001 and NIST
• Strong understanding of the cyber toolset landscape and the control environment
• Provide up to date knowledge on the cyber threat landscape
• Ensure and assist cyber security compliance to appropriate policies, standards and regulation for clients
• Works across client’s corporate, government, business and technical teams to ensure accurate scoping and services
• Support the team towards constant innovation of cybersecurity approach and go-to-market strategy, understanding current industry and market issues/trends and assist in positioning Marsh’s security solutions to clients
• Develop and maintain long-term relationships and networks with clients and internal stakeholders
• Identify pre-engagement requirements (goals, budgeting, timing, etc.) and assist with the scoping of work
• Increase exposure of Marsh’s offerings and capabilities

What you need to have:

• Bachelor degree in Computer Science or Engineering or any relevant discipline
• 8+ years professional experience in cybersecurity
• A proven track record in delivering cyber security projects
• Have excellent client management and communication skills
• Should be a self-starter who can challenge status quo by bringing in fresh ideas that help improve the practice deliverables
• Strong analytical problem solving skills and experience, ideally gained in the management-consulting sector although other sectors could be relevant
• Experience in leading multiple projects from inception to completion with high quality of delivery in a complex and challenging environment
• Smart, collaborative, relationship and outcome focused with the ability to make decisions where ambiguity exists
• Ability to demonstrate sound judgment in the prioritization of competing work assignments, escalation of issues and the formulation of solutions
• Effective organization skills with key attention to detail and delivery of high quality documentation with the ability to implement/influence change
• Strong sense of business ethics and principles
• Excellent English language skills, both verbal and written with the ability to communicate technical matters to a non-technical audience
• Fluency in Chinese and English
• Experience in Crisis Management will be desirable
• Travel will be required for this role

What makes you stand out:

• Professional security certifications (e.g. CISA, CISM, CISSP, CRISC, CBCP)
• Risk management certifications
• A blend of technical and risk management skills
• Commitment to providing high-level client service
• Ability to manage in a fast pace environment
• Ability to align the information security requirements to the business strategy and goals
• Strong interpersonal and stakeholder management skills
• Excellent communication skills with the ability to communicate technical matters to a non-technical audience
• Significant experience working with the senior management
• Significant experience in the cybersecurity consulting or corporate field in Taiwan, as well as a strong knowledge of local regulations

Please send the cover letter and CV to: [email protected]