Manager - IS&T Gov & Compliance

Position Summary

As a member of the IT Planning and Governance team, the Manager - Governance & Compliance is responsible for supporting the development, implementation, and maintenance of IT governance frameworks and compliance programs across the organization. This role ensures that IT operations comply with regulatory requirements, internal policies, and industry best practices. The Manager will assist senior manager to assess and mitigate risk, monitor compliance performance, and support audits and reporting activities. Working closely with cross-functional teams, the Manager will support to promote a culture of accountability and continuous improvement in governance and compliance practices.

Primary Responsibility

• Support the design, implement, and maintain IT governance frameworks aligned with industry standards and regulatory requirements.
• Monitor and ensure compliance with applicable laws, regulations, and standards (e.g., DICJ gaming authority regulations, GDPR data privacy laws etc).
• Provide coordination support for on-going internal/external audits activities including government regulation
• Provide support for information security systems and programs including data protection, risk management and compliance 
• Provide support for remediation planning and implementation status in conjunction with audit findings, track remediation efforts and ensure timely closure of audit issues. 
• Develop and review to provide continuous improvements to strengthen the efficiency of internal process and controls.
• Develop, review, and update IT policies guidelines and standard operation procedures (SOP) and ensure policies are communicated and enforced across departments.
• Develop and maintain compliance dashboards and metrics.
• Report regularly to senior management on governance and compliance status, risks, and improvements.
• Assist in building and maintain sustainable relationships with IS&T teams to ensure the security controls are properly understood and implemented.
• Promote a culture of compliance through training programs and awareness campaigns.
• Assist in building automated solutions to expedite end-to-end internal and external audit.
• Conduct reviews and compliance checks for IT processes to ensure compliance and effectiveness.
• Coordinate with various IS&T departments to integrate IT governance practices into daily operations.

Requirements

• Bachelor's degree in computer science, computer engineering, systems analysis, or a related study, or equivalent experience.
• 6 or more years of experience in IT governance, risk management, or compliance, preferably within the hospitality, gaming, or resort industry.
• Proven experience in managing regulatory compliance programs (e.g., gaming regulations, data privacy laws, AML, PCI DSS).
• Experience with internal and external audits, including coordination and remediation.
• Excellent written and verbal communication skills with a strong ability to communicate in English. The ability to communicate in Cantonese and/or Mandarin will be an advantage.
• Strong understanding of IT governance frameworks (e.g., COBIT, ISO 27001) and risk management principles.
• Familiarity with gaming industry regulations and hospitality operational standards.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills to collaborate across departments and with external stakeholders.
• Ability to manage multiple priorities and work under pressure in a dynamic environment.
• Proficiency in compliance management tools, risk assessment platforms, and reporting systems.
• Solid understanding of IT infrastructure, cybersecurity principles, and data protection technologies.
• High level of integrity and ethical standards.
• Detail-oriented with a proactive and strategic mindset.
• Strong team player and team management capabilities.