07/10/2026
KERING Cybersecurity Project Manager, Greater China
Kering - Fixed Term (Fixed Term)
Shanghai - Mainland China
About Kering
About us:
Kering is a global, family-led luxury group, home to people whose passion and expertise nurture creative Houses across couture and ready-to-wear, leather goods, jewelry, eyewear and beauty: Gucci, Saint Laurent, Bottega Veneta, Balenciaga, McQueen, Brioni, Boucheron, Pomellato, Dodo, Qeelin, Ginori 1735, as well as Kering Eyewear. Inspired by their creative heritage, Kering Houses design and craft exceptional products and experiences that reflect the Group’s commitment to excellence, sustainability and culture. This vision is expressed in our signature: Creativity is our Legacy. In 2025, Kering employed 44,000 people and generated revenue of €14.7 billion.
We are currently seeking a Greater China Cybersecurity Project Manager to join the group CISO team and reporting to the APAC Cybersecurity Program Manager
Your opportunity
In the context of a job creation which is aligned with the overall strategy to reinforce Cybersecurity posture, we look for an experienced Cybersecurity Project Manager who has a strong background in cybersecurity compliance, regulatory engagement, and security project management in the Greater China region.
How you will contribute
- Drive cybersecurity compliance initiatives across all Greater China brands with Gucci as the primary focus, including but not limited to Multi-Level Protection Scheme (MLPS), Mini Program compliance, AI Security compliance, and Cybersecurity Compliance regulations. Ensure timely alignment with regulatory requirements and local cybersecurity laws.
- Collaborate with local regulators to implement new cybersecurity policies and regulations, ensuring all Greater China brands, with a primary focus on Gucci, meet the evolving compliance requirements in a timely manner.
- Implement and enforce group cybersecurity policies and standards across Greater China brands, adapting global security frameworks to local requirements while maintaining alignment with Kering Group strategy.
- Work closely with the CSIRT team to coordinate vulnerability remediation efforts, ensuring timely identification, tracking, and closure of security vulnerabilities.
- Support the APAC Cybersecurity Program Manager in executing Cybersecurity projects, including Compliance assessment, security assessments (e.g, Vendor security, Cloud security, AI security etc.), penetration testing programs, and across the region.
- Provide regular cybersecurity status reports and updates to relevant stakeholders, including brand leadership, headquarter Cybersecurity teams, and local management teams on security posture, compliance status, and risk indicators.
- Act as the Greater China point of contact for Group Cybersecurity initiatives, collaborating with the Gucci teams, Cybersecurity teams to drive and coordinate projects and operation across the region.
- Monitor and assess emerging cybersecurity risks and regulatory changes in the Greater China region, providing proactive recommendations to mitigate potential security and compliance risks.
Who you are
- Bachelor's degree or higher in computer science, cybersecurity, or a related area.
- Professional certifications such as CISP, CISSP, CISA, or equivalent are a plus.
- Fluent in English and Mandarin Chinese, with excellent written and verbal communication skills to effectively engage with both local and international stakeholders.
- 6+ years' experience in cybersecurity compliance, security project management, or similar roles within global, Fortune 500 organizations or similar high-scale, multinational environments.
- 4+ years of hands-on experience in cybersecurity compliance projects such as MLPS, Security assessments, Mini Program compliance, or regulatory-driven security initiatives in Mainland China, Hongkong, Macao and Taiwan.
- Strong understanding of China cybersecurity regulatory landscape, including MLPS, Data Security Law, PIPL, and industry-specific compliance requirements.
- Excellent communication and interpersonal skills with the ability to effectively engage and influence stakeholders at all levels across brands and functions.
- Self-driven with strong risk awareness and the ability to proactively identify and address security compliance gaps. Experience working in cross-functional teams in a matrix organization is highly desirable.