Experience

• 

  livi bank

  • Hong Kong

  • Head of Internal Audit

    • Sep 2019 - Sep 2021
    • Hong Kong

    Having built and overseen a fit-for-purpose team to discharge the audit duties by fulfilling the diverse requirements from the Board, the Audit Committee, senior management and regulators to safeguard the interest of stakeholders.

• 

  Hang Seng Bank

  • Hong Kong

  • Senior Audit Manager, Retail Banking and Wealth Management

    • Feb 2019 - Sep 2019
    • Hong Kong

    Led a team to provide audit coverage of the Retail Banking and Wealth Management business for the Bank.

• 

  Fidelity International

  • Hong Kong

  • Associate Director, Internal Audit

    • Sep 2013 - Feb 2019
    • Hong Kong

    Appointed as the subject matter expert in Asia Technology, Global Investment Management and China Business.

• 

  J.P. Morgan

  • Hong Kong

  • Vice President, Asset Management Asia Audit

    • Aug 2008 - Aug 2013
    • Hong Kong

    A hybrid internal auditor responsible for the technology controls, asset and wealth management process reviews.

• 

  The Bank of East Asia, Limited

  • Hong Kong

  • IT Audit Manager

    • Jun 2007 - Aug 2008
    • Hong Kong

    An IT Auditor covering a whole range of technology controls including technology infrastructure, application, security operations, business continuity, change management and vendor management.Developed the web application security assessment methodology to assist the audit team to identify application vulnerabilities against the Open Web Application Security Project (OWASP) Top 10 vulnerabilities, e.g., SQL injection, cross-site scripting, etc.

• 

  Société Générale

  • Hong Kong

  • IT Audit Manager

    • Aug 2006 - May 2007
    • Hong Kong

    Implemented the data analytics tool, namely ACL, for the Asia audit team and performed the annual risk assessments for various IT functions based on the COBIT model.Led and/or completed various IT and integrated audits in Asia, e.g., Warrants Application Review, Payment System Security Review for Taiwan, IT Infrastructure Review for South Korea, and Market Data Services Review for Hong Kong, Singapore, Sydney and Tokyo.

• 

  HSBC

  • Hong Kong

  • Assistant Manager IT Audit

    • Dec 2000 - Aug 2006
    • Hong Kong

    Supervised a team of 4 professionals to develop the Computer Assisted Audit Techniques (CAATs) for the Asia Pacific Audit Department.Participated in the various Technology Infrastructure audits in Asia Pacific, including Operating Systems (Linux, Unix, Windows and OS400), Database Management Systems (Oracle, MS SQL and DB2), Network Management (Cisco Router and VPN, Checkpoint Firewall, IronPort, Bluecoat and Nessus Penetration Testing) and Cryptographic Key Management based on the established audit methodology.