Director, Operations and Cyber Security - Shenzhen

Purpose of Position

• The Director, Operations and Cyber Security will be responsible for leading the strategy, governance, and execution of enterprise technology operations, infrastructure stability, cyber security, and service resilience across the organization. The incumbent will ensure that all technology platforms, operational processes, and security controls are scalable, reliable, compliant, and aligned with business growth objectives.
• The incumbent will collaborate closely with business stakeholders, product, engineering, legal, compliance, and external partners to establish a strong operational foundation, protect enterprise assets, and continuously enhance service quality, cyber resilience, and incident readiness in a fast-paced and dynamic environment.

Job Description

• Lead and oversee enterprise technology operations, infrastructure, service management, cyber security, and operational support functions to ensure stable, secure, and efficient business operations.
• Define and drive the operations and cyber security strategy, roadmap, governance model, and operating standards in alignment with business priorities and risk appetite.
• Ensure high availability, performance, resilience, and recoverability of all in-house and third-party platforms supporting eCommerce, retail, corporate systems, customer operations, and internal business functions.
• Establish and enforce best practices for IT operations, cyber security, access control, vulnerability management, data protection, system monitoring, backup, disaster recovery, and incident response.
• Build and maintain a strong security and compliance framework covering infrastructure, applications, endpoints, identities, vendors, and employee security awareness.
• Lead the governance and continuous improvement of operational processes including service request management, incident management, problem management, change management, release readiness, and escalation management.
• Partner with engineering and product teams to ensure operational readiness, security-by-design, and supportability are embedded into the technology delivery lifecycle.
• Oversee cyber risk identification, threat detection, vulnerability remediation, and security incident response, while ensuring timely communication, resolution, and post-incident review.
• Liaise with all business units to ensure operational requirements, resilience expectations, and security needs are understood, prioritized, and delivered effectively.
• Manage internal teams and external vendors/service providers to ensure service quality, cost efficiency, and compliance with agreed service levels and security standards.
• Drive business continuity and disaster recovery planning, testing, and improvement to minimize operational disruption and strengthen organizational resilience.
• Provide leadership, mentoring, and capability building for operations and security teams, fostering a culture of ownership, discipline, collaboration, and continuous improvement.

Requirements

• Strong hands-on leadership experience in technology operations, infrastructure, service management, and cyber security.
• Proven track record of leading operations and security functions for large-scale digital, eCommerce, or consumer-facing businesses.
• Deep knowledge of IT operations, cloud and on-prem infrastructure, network security, endpoint security, IAM, vulnerability management, backup, and disaster recovery.
• Strong experience in designing and implementing operational governance, service management processes, and cyber security controls in fast-paced environments.
• Experience in leading major incident management, crisis response, root cause analysis, and remediation programs.
• Strong understanding of security frameworks, policies, standards, and compliance practices, including risk management and audit readiness.
• Excellent stakeholder management with the ability to work across technology, business, legal, compliance, and external partners.
• Successfully delivered business results with a mix of in-house teams and external service providers or managed service partners.
• Built, led, and developed high-performing operations and/or security teams.
• Known for promoting best practices, governance discipline, and a strong culture of accountability and continuous improvement.
• At least 8 years of relevant working experience in technology operations, infrastructure, cyber security, or related leadership roles, with a proven track record in enterprise-scale environments.
• Strong analytical, problem-solving, decision-making, and communication skills.
• Previous experience in eCommerce, retail, omnichannel, or other high-transaction environments is highly preferred.
• Happy to work in a buzzing multicultural environment.
• Professional certifications such as CISSP, CISM, CISA, ITIL, ISO 27001, or relevant cloud/security certifications are a plus.
• Proficient in spoken and written Chinese and English.