Reference code: JR130339
Richemont owns some of the world’s leading luxury goods Maisons, with particular strengths in jewellery, fine watches and premium accessories. Each Maison represents a proud tradition of style, quality and craftsmanship and Richemont seeks to preserve the heritage and identity of each of its Maisons. At the same time, we are committed to innovation and designing new products which are in keeping with our Maisons’ values, through a process of continuous creativity.
MAIN PURPOSE
The Cyber Security Assistant Manager supports the Cyber Security Manager and Richemont Korea in strengthening and overseeing the Group’s cyber risk management posture within the Korea region. This includes proactively identifying, assessing, and mitigating cyber risks impacting the Maisons and business operations, in alignment with Group Security standards and regional specificities.
In parallel, the role ensures compliance with the Personal Information Protection Act, the Act on Promotion of Information and Communications Network Utilization and Information Protection, and any other relevant decrees, legislation, regulations, and guidelines issued by the Korean Communications Commission in the context of information protection in Korea (“Korea Data Protection Law”). This is achieved in close coordination with relevant stakeholders.
The function serves as a key liaison between the Group Security Organisation, Legal, and other stakeholders—namely the Richemont Group and its Maisons—ensuring alignment between global cyber security strategy, regional cyber risk management priorities, and local regulatory requirements in Korea.
He/she will support the Korea Cyber Security Manager and drive on his/her behalf as the key facilitator and manager in the context the different cyber security risk assessment and management activities.
In this capacity, he/she will closely collaborate with the central Group Security organization, the local Management, the Global Technology/GRC functions, the Maisons as well as the global communities and the external auditors.
KEY RESPONSIBILITIES
Act as the forefront of the Group Security organization and be the proxy of such org to and for the local Business
Coordinate & Conduct Risk, Compliance and Security assessment efforts with both external and internal stakeholders
Specifically, the regular assessments required by the Korean Data Protection Law (Personal Information Protection Act).
Monitor changes and perform impact analysis of regulatory compliance requirements in Korea
Establish and maintain trusted relationships with relevant Stakeholders being from Business Unit, Legal, Security, Risk & Compliance and Technology teams (incl. Infrastructure, Enterprise Application & Digital) in the region and beyond
Ensure communication within the team and towards the business
Ensure the alignment with group security policy and process
Provide cyber security awareness trainings to staff
DIMENSION
A University degree with a major in economics, mathematics, computer science, physics or similar and at least 5 years of experience in the Audit, Risk & Compliance or Cyber Security field
Knowledge in information security principles and practices
Understanding of Korean legal context and associated laws and legislations (e.g. PIPA (개인정보보호법))
Proven hands-on experience in the following areas
Policy Making
Stakeholder Management
Compliance Assessments (e.g. Korea – ISMS)
Cyber Security Audits
Cyber Security Risk Management
Business Level Communication
Technology knowledge
Hands-on experience in Risk Management
Experience working in large international environment/ international teams
Good analytical and problem-solving skills
Fluent in Korean and English
