IT Risk Manager - Singapore - NETWORK FOR ELECTRONIC TRANSFERS (SINGAPORE) PTE LTD

NETWORK FOR ELECTRONIC TRANSFERS (SINGAPORE) PTE LTD

Verified Company

Singapore

3 weeks ago

Posted by:

Wei Jie

beBee Recruiter

Description

**Summary

This role, as a second line-of-defence, is responsible for defining, formulating and executing IT and cyber risk-related risk Frameworks, Policies, Processes and Procedures for the organisation.

This role works closely with first and third lines-of-defence, and acting as an advisor and domain expert to the business stakeholders on IT and cyber risk matters.

Overall the role is responsible to manage Technology risks (including cyber risks) for the organization.

Key Responsibilities

Advise on sound IT and cyber risk management matters, through timely updates to Senior Management.
Chair IT risk committee meeting to provide oversight on IT and cyber risk matters.
Develop and execute policies, processes and procedures to facilitate effective IT and cyber risk management.
Administer IT compliance and technology/cyber risk management by examining the internal and external risks, including horizon scanning of emerging risks, while ensuring policies commensurate with industry practices.
Liaise with diverse teams to conduct IT risk management and drive IT riskrelated compliance / selfassessment programmes.
Partner and work with internal stakeholders to review, identify, streamline and implement process improvement with regards to IT and cyber risk management.
Manage IT riskrelated audits, regulatory inspections. Review the audit findings with key stakeholders to determine action plans and verify remedial solutions for closure
Proactively engage in establishing IT Risk awareness within the company.
Communicate and provide guidance of new It riskrelated policies and standards to relevant stakeholders.
Ability to innovate and strategize as required.

Requirements:

Minimum 12 years of experience in risk with at least 5 years of experience specifically in IT risk (preferably from financial/banking/payment industry) and be familiar with MAS TRM & CCOP Guidelines or equivalent.
Strong knowledge of regulatory requirements and industry trends/practices (e.g. NIST framework, MAS TRM Guidelines, MAS Cyber Hygiene, CCOP, ISO 27001 standard)
Certifications such as CISA, CISM, CISSP, CRISC or any relevant certification is an advantage.
Excellent problemsolving skills and ability to prioritize and manage multiple tasks.
Proactive team player with ability to work independently with mínimal supervision and equips with excellent communication (both spoken and written), presentation and business writing skills.
Have a strong control and process management mindset, constantly paying attention to details and have ability to perform deepdive investigation and crunching for control and process issues.