Exams Information Security Manager at British Council

Beijing, Beijing, China -

Full Time

Start Date

Immediate

Expiry Date

21 Jan, 26

Salary

0.0

Posted On

23 Oct, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information Security, Privacy Management, Internal Security Audit, Risk Assessment, Web Security, Vulnerability Scanning, Penetration Testing, Application Security, Security Framework, Data Protection, Technical Consultancy, Security Products, Vulnerability Management, Automated Tools, Common Business Security Risks, .NET Technology Stack

Industry

Non-profit Organizations

Description

We support peace and prosperity by building connections, understanding and trust between people in the UK and countries worldwide. For 90 years we have shaped brighter futures through education, arts, culture, language, and creativity. Working with people in over 200 countries and territories, we are on the ground in more than 100 countries. We connect. We inspire. Pay Band: 6 Contract Type: 2 years, fixed-term contract Location: Beijing, China Right to work: As we cannot sponsor work passes, applicants must already have the right to live and work in China. Closing Date: Tuesday 04 November August 2025 23:59 China time (GMT+08) Role purpose This is a dedicated role in Exams IT Services team to manage the information security tasks and related activities: e.g. security hardening, privacy management, internal security audit, operation process review. Role context Needs to maintain key relationship: Internal Exams IT Services teams Product Owners & Project Managers of Exams operation/ projects team Internal Exams team members in 4 China offices Information Governance and Risk Assessment team in UK Global Information Service (GIS) Data protection Officer in China External External Exams IT vendors / consultants Product users Main accountabilities Support the information security control for Exams IT Service nationally, e.g. develop security framework for development projects, hardening existing systems. engagement with technical partners and business partners to define the vision and roadmap of implementing the information security framework and procedures Provide professional consultancy to projects or operations in order to improve the information management in exams operations. Lead the penetration test, vulnerability scan, risk assessment activities regularly for systems in China Exams To establish an effective information security system to conduct timely inspection, evaluation, audit, improvement, monitoring and feedback; Collect the published information security vulnerability and update related IT teams Qualifications & Experience: Bachelor's degree Proficient in English and Chinese Extensive full-time IS related work experience Responsible for web security vulnerability scanning, penetration testing, and vulnerability follow-up tasks. Familiar with .NET technology stack, web framework working principles, such as VUE, React, etc. Experience in application security implementation, familiar with SDL, vulnerability management, automated tools, understanding of common business security risks, and experience in using security products related to SAST, DAST, SCA. Benefits: 22 days of Annual Leave 13th Month Salary Non-consolidated bonus Comprehensive health and insurance package - includes accidental insurance, life insurance, and supplementary medical coverage Social insurance & housing fund - Coverage under national social insurance and housing fund Professional development - Ongoing learning and career growth opportunities to support your development. A connected and trusted UK in a more connected and trusted world. Equality, Diversity and Inclusion Statement We are committed to equality, diversity and inclusion and welcome applications from all sections of the community as we believe that a diverse workforce gives added depth to our work. The British Council is a Disability Confident Employer. The Disability Confident scheme helps challenge attitudes, increase understanding of disability and ensure staff are drawn from the widest possible pool of talent. We guarantee an interview for disabled applicants who meet the minimum role requirements. We welcome discussions about specific requirements or adjustments to enable participation and engagement in our work and activities. Safeguarding Statement The British Council is committed to safeguarding children, young people and adults who we work with. We believe that all children and adults everywhere in the world deserve to live in safe environments and have the right to be protected from all forms of abuse, maltreatment and exploitation as set out in article 19, UNCRC (United Nations Convention on the Rights of the Child) 1989. Appointment to positions where there is direct involvement with vulnerable groups will be dependent on thorough checks being completed in line with legal requirements and with the British Council's Safeguarding policies for Adults and Children. If you experience any difficulties with submitting your application, please email askhr@britishcouncil.org

Responsibilities

Manage information security tasks and related activities for the Exams IT Services team, including security hardening and internal security audits. Establish an effective information security system to conduct timely inspections, evaluations, and improvements.