About this role
At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.
As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.
To get there, we need people with tech/digital/analytics expertise and passion to help develop positive, sustainable change through digitally enhanced experiences that will impact the lives of millions of people and create a healthier future for everyone.
If you believe in developing a better tomorrow, read on.
About the Role
This position, part of Group Information Security (GIS) team, is responsible for deployment of information security strategy and governance required to support Group Innovation Office (GIO) Artificial Intelligence (AI) research initiatives. The role will work closely with GIO teams located in Shanghai, EDSH, to ensure all AI research and related projects are conducted securely and are fully aligned with AIA Group Security Standards.The incumbent will be required to work closely with GIS Technology Governance and Controls team and with GIS Security Operation in addressing ways of fulfilling AIA security standards in the deployment of AI/Gen AI products/solutions.
Key Roles & Responsibilities
- Define and implement security controls for AI/GenAI products and solutions throughout their lifecycle.
- Set scope, plan solution and lead the entire project delivery of engagements.
- Provide expert guidance on data-centric security approaches, risk mitigation, and governance for AI research environments.
- Analyze and assess risks to ambiguous/unstructured initiatives and recommend appropriate mitigation strategies.
- Act as a trusted advisor to GIO stakeholders, clearly communicating security requirements, best practices, and potential risks.
- Collaborate with GIO to understand requirements for AI/GenAI projects and ensure compliance with AIA security standards.
- Collaborate with cross-functional teams with GIS to ensure seamless implementation and support of information security controls.
- Monitor emerging threats and regulatory developments related to AI security and integrate them into AIA’s security framework.
Minimum Job Requirement:
- Degree in Computer Science or related discipline.
- 10+ years of experience in Information security or technology control function, preferably with PM experience in driving assessment/remediation programs.
- Be able to frame and scope complex problems and cope well with a high degree of uncertainty.
- Interact effectively with various business roles, from technologists, data/AI scientists, senior business leaders and 2/3LoD partners.
- Possess good analytical skills, solid business judgment and strong risk mindset to achieve the right outcomes.
- Have interpersonal skills and confidence to establish a trust relationship with key stakeholders.
- Ability to work with a limited level of direct supervision.
- Self-starter, proactive in taking initiative to challenge status quo and improve efficiencies.
- Experience with AI and Zero Trust is beneficial but not required.
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Other facts
About AIA
AIA Group Limited and its subsidiaries (collectively “AIA” or the “Group”) comprise the largest independent publicly listed pan-Asian life insurance group. It has a presence in 18 markets – wholly-owned branches and subsidiaries in Mainland China, Hong Kong SAR(1), Thailand, Singapore, Malaysia, Australia, Cambodia, Indonesia, Myanmar, New Zealand, the Philippines, South Korea, Sri Lanka, Taiwan (China), Vietnam, Brunei and Macau SAR(2), and a 49 per cent joint venture in India. In addition, AIA has a 24.99 per cent shareholding in China Post Life Insurance Co., Ltd.
The business that is now AIA was first established in Shanghai more than a century ago in 1919. It is a market leader in Asia (ex-Japan) based on life insurance premiums and holds leading positions across the majority of its markets. It had total assets of US$328 billion as of 30 June 2025.
AIA meets the long-term savings and protection needs of individuals by offering a range of products and services including life insurance, accident and health insurance and savings plans. The Group also provides employee benefits, credit life and pension services to corporate clients. Through an extensive network of agents, partners and employees across Asia, AIA serves the holders of more than 43 million individual policies and over 16 million participating members of group insurance schemes.
AIA Group Limited is listed on the Main Board of The Stock Exchange of Hong Kong Limited under the stock codes “1299” for HKD counter and “81299” for RMB counter with American Depositary Receipts (Level 1) traded on the over-the-counter market under the ticker symbol “AAGIY”.
(1) Hong Kong SAR refers to the Hong Kong Special Administrative Region.
(2) Macau SAR refers to the Macau Special Administrative Region.
What you'll do
- The role involves defining and implementing security controls for AI/GenAI products throughout their lifecycle and providing expert guidance on data-centric security approaches. The incumbent will also collaborate with various teams to ensure compliance with AIA security standards and monitor emerging threats.
Ready to join AIA?
Take the next step in your career journey