PURPOSE Act as the technical subject matter expert in leading, developing, driving and implementing the DevSecOps capability as well as the internal secure code trainings for the FWD Group including all Business Units. To contribute strategically to the continuous enhancement of the Application Security process by automating iterative enhancements to the overall approach, workflow, scope and implementation in alignment with the needs of Group Information Security's customers and according to the changing technical, regulatory and business environment. KEY ACCOUNTABILITIES Design and drive the definition, implementation and continuous enhancement of DevSecOps capability, solutions and operational framework by partnering with all Business Units' stakeholders in a multi-disciplined team structure and to ensure complete coverage across a variety of projects Identify, introduce and implement with the Business Units the latest application security testing tools such as DAST, SCA/OSS, Container Security in their entire development cycles. Drive awareness and support to Group IT Security, Group IT and Business Units IT, to bring cultural change in the adoption of DevSecOps practices and solutions, as well as their implications across the organizations. Act as a Subject Matter Expert for all application security aspects of all projects and, in doing so, facilitate the efficient and secure delivery of those projects. Identify technical risks as result of the security reviews, ensure these risks are reported to the appropriate risk team(s) to track remediation within the agreed timeframes. Initiate and evaluate projects, to build and enhance new capabilities in FWD, that related to Identify, Protect, Detect, Respond and Recover to technical risks. Align security reviews to FWD Group Information Security and overall IT Strategy needs. Manage allocated resources to deliver the security reviews (either internal FWD staff or vendors). Provide expertise to Business Units when needed, in building local IT Security Application related solutions. Support the Head of IT Security Engineering in defining and maintaining the IT Security Engineering framework as well as providing regular management reporting QUALIFICATIONS / EXPERIENCE University degree from Information Technology or equivalent discipline. Minimum 8 years working experience in IT Security Management role, preferably in Financial Services. Regional experience in IT Security Technical or Application Security roles. Technical experience in Identify, Protect, Detect, Response or Recover areas. Sufficient experience and Subject Matter Expert level of knowledge in fields of Information Security & solid understanding of project teams' needs. For instance, secure architecture design, risk assessment and remediation & general IT technologies. Sound consulting capability including, clear and concise written and verbal communications, ability to manage senior stakeholders, and work on high profile projects with tight timelines, always present logical thinking and problem- solving capabilities even under pressures. Proven experience of delivering complex projects Ability to communicate complex concepts to mosaic stakeholders Ability to be self-managed and driven by business and personal goals KNOWLEDGE & TECHNICAL SKILLS Certifications or official training on Cloud, Ethical Hacking, Offensive Security, Application Security Excellent interpersonal and influential skills. Good communication and presentation skills. Collaborative, consultative and customer service focussed approach to delivery. Leadership skills, problem solving and decision making skills; as the incumbent has to deal with a cross section of stakeholders across 10 countries. About FWD Group FWD Group is a pan-Asian life insurance business with more than 11 million customers across 10 markets, including some of the fastest-growing insurance markets in the world. FWD reached its 10-year anniversary in 2023. The company is focused on making the insurance journey simpler, faster and smoother, with innovative propositions and easy-to-understand products, supported by digital technology. Through this customer-led approach, FWD is committed to changing the way people feel about insurance. Visit https://www.fwd.com.hk/