- Establishing corporate information security policies, standards, guidelines, baselines and practices that protect the integrity and confidentiality of information and network infrastructure.
- Develop procedures and controls to assure compliance with applicable regulatory and legal requirements as well as good business practices.
- Proactively identify audit and compliance related issues to reduce the risk of security exposures, gaps in the design and operating effectiveness of controls whilst seeking opportunities for continuous improvement.
- Driving IT security programs in line with internal and external standards and ensuring compliance with in-country regulatory requirements.
- Maintaining oversight to enterprise-wide security technologies, actively monitoring & responding to security events.
- Develop and maintain standards and controls to ensure the protection of data based on classification.
- Work directly with business units to identify critical data and ensure appropriate data classification and protection standards are implemented.
- Manage the attestation program for all IT controls to support assurance and alignment across all information security stakeholders.
- Support internal and external audit process for relevant compliance concerns including PDPA, GDPR, MAS TRM, ISO27001, etc.
- Perform and evaluate information security risk assessments for various information systems and processes, including annual penetration tests.
- Develop, monitor, track and report against IT Security metrics and KPIs that help the IT Infra understand threats, vulnerabilities and risks associated with protecting information across the enterprise and plans to mitigate those risks.
- Develop and maintain the IT Risk Register to support ongoing tracking and management of all identified risks and issues and to ensure adequate and timely resolutions to all audit/review issues relating to security.
- Lead the development and operation of third-party vendor risk assessment, management and due-diligence program.
- Conduct client meeting and drive all the questions arising from client relationship teams. This includes completing client's info security questionnaires and liaising with clients on all such requirements within tight deadlines.
- Formulate, lead and communicate security goals and objectives based on an integrated understanding of business priorities, security vision and strategy.
- Providing security related support to IT and business team users and facilitate recommendations on future technical trends/directions that encompass multiple systems and teams to meet business critical initiatives.
- Point of contact to assist and advise on Information Security related matters
- BSc in Computer Science or equivalent; with 5+ years of relevant working experience in IT governance, risk, and compliance management.
- ISACA / CISM / CISSP Certification.
- Strong understanding of fundamental information security concepts and technology.
- Familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework.
- Understanding of Information Security principles, IT infrastructure (including operating systems, applications, communications and network protocols), architecture elements of Identity Access Management (IAM), network security, data security/DLP, cryptography, logging and monitoring.
- Experience in security design, threat modelling and risk assessments.
- Candidate should be fully aware of the current and emerging security solutions available in the industry.
- Ability to be self-motivated, flexible and be able to drive and manage multiple tasks and priorities on very tight deadlines in a fast paced and rapidly changing environment.
- Strong interpersonal and collaboration skills with the ability to develop, maintain and foster constructive relationships with others.
- Excellent written and oral communication skills.
- Effective communication and analytical skills
- Strong work ethic with attention to detail.
-
Risk, Governance
1 week ago
Credit Suisse Singapore**Your field of responsibility** · We offer you the opportunity to be responsible for the Risk, Governance and Regulatory function for Investment Management & Client Coverage Asia Pacific (IM APAC). This includes: · - Risk Management: You will contribute to and supervise Risk Man ...
-
Governance and Risk Officer
3 days ago
People Profilers SingaporeJob Description: · **Responsibilities** · - Prepare and ensure timely submission of governance filings, including the Governance Evaluation Checklist. · - Monitor the Policy Management Framework and Incident Reporting System. · - Facilitate and support internal stakeholders in th ...
-
Avp, Risk Governance
1 day ago
OCBC Bank Singapore**AVP, Risk Governance (Risk & Prevention)** **-** **(**230001HS**)** · The job holder is responsible for: · - Supporting the design, implementation and regular reporting of an overall risk management framework tailored to the relevant audience. · - Performing risk assessment usi ...
-
Technology Risk Governance
4 days ago
JJ Consulting Services SingaporeOur Client is an established and leading company in Singapore, who is seeking to recruit a Technology Risk Governance Specialist. · **Technology Risk Governance Specialist** · **Key Roles and Responsibilities** · - Conduct risk assessment on digital projects, existing systems and ...
-
Technology Risk Governance
1 week ago
JJ Consulting Services SingaporeOur Client is an established and leading company in Singapore, who is seeking to recruit a Technology Risk Governance Specialist. · **Technology Risk Governance Specialist** · **Key Roles and Responsibilities** · - Conduct risk assessment on digital projects, existing systems and ...
-
Head of Risk and Governance
4 days ago
CIMB Group Singapore**Drive strong Operational Risk Management practices** · - Proactively manage the risk in the Division/Department to reduce the likelihood or impact of negative impact events. · - Risk management is through the proactive identification of risks facing the unit. Identification tec ...
-
Principal Risk Governance
4 days ago
BHP BILLITON MARKETING ASIA PTE LTD Singapore**About BHP** · At BHP we support our people to grow, learn, develop their skills and reach their potential. With a global portfolio of operations, we offer a diverse and inclusive environment with extraordinary career opportunities. Our strategy is to focus on creating a safe wo ...
-
Head of Risk and Governance
2 days ago
CIMB BANK BERHAD Singapore**Key Responsibilities: · **Drive strong Operational Risk Management practices** · - Proactively manage the risk in the Division/Department to reduce the likelihood or impact of negative impact events. · - Risk management is through the proactive identification of risks facing th ...
-
Technology Risk Governance Specialist
4 days ago
JJ CONSULTING SERVICES SingaporeOur Client is an established and leading company in Singapore, who is seeking to recruit a Technology Risk Governance. · **Technology Risk Governance · **Key Roles and Responsibilities · - Conduct risk assessment on digital projects, existing systems and third parties by identify ...
-
Information Security Governance, Risk
3 days ago
PACIFIC PRIME INSURANCE BROKERS SINGAPORE PTE. LTD. Singapore**Summary** · Working as part of the information security office within the IT department at Pacific Prime CXA, the GRC (Governance, Risk and Compliance) Manager will be responsible for leading the day-to-day IT compliance, data governance and IT risk management functions. Primar ...
-
Manager, IT Governance, Risk, Compliance
3 hours ago
Ethos BeathChapman Singapore**Job Details**: · **Location** · Singapore · **Salary** · Competitive Salary · **Job Type** · Permanent · **Ref** · BH-19467 · **Contact** · Shannagh Wu- **Posted** · about 3 hours ago · - Take the lead in driving IT service maturity and information security risk management with ...
-
Assistant Manager, Governance, Risk
1 week ago
KINGFISHER RECRUITMENT (SINGAPORE) PTE. LTD. SingaporeA public healthcare group is hiring an Assistant Manager for their Governance, Risk & Compliance team. This role requires some experience in IT audit / IT security and operations. · You will be the second line of defence for nationwide Financial Systems, and all of the Group's in ...
-
Traded Risk Governance Manager
3 hours ago
Standard Chartered Singapore**Job***: Risk · **Primary Location***: Asia-Singapore-Singapore · **Schedule***: Full-time · **Employee Status***: Permanent · **Posting Date***: 27/Jan/2023, 1:30:07 AM · **Unposting Date***: Ongoing · **The Role Responsibilities** · **Operational Effectiveness** · - Develop so ...
-
Senior Manager, Governance, Risk
6 days ago
Marriott International, Inc Singapore**Job Number** · **Job Category** Information Technology · **Location** Singapore Regional Office, 2 Harbourfront Place #06-08, Singapore, Singapore, Singapore VIEW ON MAP · **Schedule** Full-Time · **Located Remotely?** N · **Relocation?** N · **Position Type** Management · **J ...
-
Assistant Manager, IT Risks and Governance
3 days ago
PeopleSearch SingaporePerform risk assessments (including relevant cyber risks) to ensure key controls are in place and work with stakeholders to determine appropriate risk responses · - Source for and manage consultants in specialist fields to perform non-financial audits · - Design self-assessment c ...
-
Standard Chartered Singapore**Job***: Governance, Risk Management & Compliance · **Primary Location***: Asia-Singapore-Singapore · **Schedule***: Full-time · **Employee Status***: Permanent · **Posting Date***: 03/Aug/2023, 11:38:55 PM · **Unposting Date***: 18/Aug/2023, 5:59:00 PM · **The Role Responsibili ...
-
BNP Paribas Singapore**POSITION PURPOSE**: · APAC Production Security department is responsible for most IT Security activities for BNP Paribas in Asia Pacific region, such as: · - IT Production Security Governance, Project Management & Risk management · - Network Security and Security Design & Archi ...
-
Operations, Risk Governance, Vice President
1 week ago
Goldman Sachs SingaporeOperations Risk & Resilience is responsible for coordinating the Operations Risk Management framework activities across Operations team (comprising of embedded Operations and Core Operations), with particular focus on cross-divisional risk reporting, remediation and governance. O ...
-
Manager & Senior Consultant (Governance, Risk &
3 hours ago
Wizlynx Group Singapore**Job Summary and Mission** · **This position contributes to the success of wizlynx group by performing the following**: · - Oversee day-to-day GRC Teams' operation that include Singapore, Malaysia and Hong Kong during Asia-Pacific time zone · - Develop, drive and owns Informatio ...
-
EY SingaporeHere at EY, you'll have the chance to build a truly exceptional experience. We'll empower you with the latest technology, surround you with high-performing teams, and provide the global scale and diverse and inclusive culture you need to discover your full potential. Through our ...
Information Security Governance, Risk - Singapore - PACIFIC PRIME INSURANCE BROKERS SINGAPORE PTE. LTD.
Description
Roles & ResponsibilitiesSummary
Working as part of the information security office within the IT department at Pacific Prime CXA, the GRC (Governance, Risk and Compliance) Manager will be responsible for leading the day-to-day IT compliance, data governance and IT risk management functions. Primary responsibility will include defining, creation, management and maintenance of IT and organizational policies and standards in support of legal and regulatory compliance needs as well as general IT and organizational information security controls and practices.
Responsibilities
Requirement
Information Security
Audit and Compliance
External Audit
Oral Communication Skills
Risk Assessment
Regulatory Compliance
IT Governance
Data Classification
Cryptography
Data Security
Data Governance
Computer Science
Logging
NIST
IT Risk Management
Operating Systems
Cyber Risk Management
Network Security
CISSP
CISM