Insight and planning: Gain insights into local laws and regulations, understand security and privacy requirements of local governments, regulators, and customers, and local industry best practices, and develop local business budgets and plans.
Policy and process adaptation: Implement security and privacy policies locally, optimize local business regulations and processes, provide supervision guidance, and organize implementation.
Compliance and risk control: Use risk control methodologies to identify local security and privacy risks, develop and implement compliance and risk control solutions, and develop crisis contingency plans and handle emergencies.
Communication and trust building: Proactively identify external stakeholders, collaborate with business departments to establish a regular communication mechanism with local regulators, customers, industry, and standard organizations, and organize the implementation.
Organization and capability development: Build local security and privacy organizations, improve security compliance awareness, and improve professional capabilities, evaluate the capability tools provided by HQ and regions, and drive improvement.
Insight and planning capability: in-depth insight into and understand local security and privacy laws and regulations as well as security and privacy requirements of local regulatory organizations
External communication capability: participate in external speech and presentation as a spokesperson, and effectively communicate with local regulatory authorities, industry and standards organizations, and customer organizations.
Connectivity and execution capabilities: mutual trust between people support the construction of mutually beneficial relationships among organizations; multiple interests can be coordinated to achieve common goals
Learning capability: Have self-driven learning capabilities, identify weaknesses in professional and business capabilities, and quickly make up for them through self-learning and combination of training and practice.
Business Understanding: Global View, Be able to grasp business rules, deeply understand ICT business or consumer business requirements, and identify and manage security and privacy risks in business.
Have successful experience in security and privacy of large enterprises or regulators in the ICT industry in the local country and have industry influence.
Extensive external communication experience (including government, media, industry, and customers)
Have local security and privacy industry accumulation, interpersonal connections, and industry influence
English can be used as the working language;
Have the ability to write speeches and related materials in French, and be familiar with the use of Office tools;
Successful department management experience and cross-cultural team management experience;
External certifications are preferred，such as CISSP/IAPP.