
Governance, Risk, and Compliance
1 week ago
Get AI-powered advice on this job and more exclusive features.
The GRC Lead will be responsible for responsible for initiating, running, and managing information security governance, risk management, audits, and compliance with SOX and other relevant regulations. Successful candidate is expected to plan, initiate, coordinate, and run the Governance, Risk, and Compliance activities, including running the information security awareness program, and producing the reports and presenting them to the management, coordinating the resolution of outstanding security and IT audit issues, and tracking the overall risk and audit points, to keep the company's security risk at acceptable level.
This is an individual contributor position reporting to Senior Director, GIS.
Responsibilities:
- Develop, maintain, and enhance the Information Security Management System (ISMS) in alignment with ISO 27001 and other relevant security frameworks such as NIST CSF and CIS CSC.
- Lead and manage the organization's SOX ITGC, ISO 27001, CIS CSC, and NIST CSF programs, ensuring compliance with regulatory requirements and industry best practices.
- Monitors compliance with the organization's security policies, standards and procedures among employees, contractors, and other third parties and drive the necessary corrective actions including running the relevant infosec awareness training program.
- Support and participate in the Enterprise Risk Management, SOX compliance, and personal data protection activities related to IT and information security – work closely with relevant departments and business units to develop the necessary policies and action plans.
- Lead and conduct regular information security risk assessment, vulnerability management and security review on IT assets and provision of exception/ exposure reporting and remediation plans to the Head of GIS, VP of Finance and the rest of Executive Leadership Team. Identify and communicate vulnerability and risk exposure to internal employees and key stakeholders, and senior management when deemed necessary.
- Review and ensure that new technology solutions and processes proposed comply with the Company's security policies as well as relevant regulations. Provide security requirements for new initiatives. Where necessary, provide security requirements for new initiatives, perform and document gap analysis against such requirements.
- Lead and manage the GRC initiatives and work closely with key people with security responsibilities in different functions in the IT organization and business units. Where necessary, develop pragmatic security guidelines and operational documents, review and suggest changes to existing infosec related processes and procedures to improve the overall security posture of the enterprise.
Qualifications:
- Typically 10 years or more of experience in security governance, risk assessment, compliance, and audit; some experience in various security technology related administrations (e.g., FW, SIEM, IPS, VPN, DLP, End-point Security administrations), and IT/infosec operations will be advantageous.
- Solid information security knowledge on relevant security compliance requirements, frameworks, controls, and standards, such as ISO 27000 series, SOX, NIST CSF, and CIS CSC, and their application into manufacturing environment.
- Experience in leading and running SOX ITGC related activities, performing and leading IT audit and risk assessment, with proven track record in planning, coordinating and executing the processes and performing the assessments based on recognized standards and requirements.
- Demonstrated ability to work with people from various level of management, from operational and working level people to senior management level. Effective oral, written communication, and presentation skills.
- Experience in consulting or vendor environment would be an advantage.
- Working experience in global multi-national company with multicultural people, dealing with people from diverse cultural background and cross-border team across different time zones.
- Broad understanding of security strategy, technology and operations
- Able to work alone with minimum supervision/guidance.
- Bachelor's degree from an accredited institution, with degree preferred in Computer Science or Information technology systems, cyber security, or related disciplines.
- CISSP, CISA, CRISC certifications or equivalent would be advantageous.
- Strong Emotional Intelligence with demonstrated sustained leadership in a large organization involving multiple stakeholders.
- Demonstrated management skills, e.g., budget development and administration, policy development and implementation, personnel administration, staff training and development.
Company Overview
Founded in 1951, Kulicke and Soffa Industries, Inc. (NASDAQ: KLIC) specialize in developing cutting-edge semiconductor and electronics assembly solutions enabling a smarter and more sustainable future. Ever-growing range of products and services supports growth and facilitates technology transitions across large-scale markets.
Please refer to the website for more details: www.kns.com.
Kulicke & Soffa recruits on the basis of merit (such as skills, experience or ability to perform the job), regardless of age, race, gender, religion, marital status and family responsibilities, or disability.
Seniority level- Seniority levelMid-Senior level
- Employment typeFull-time
- Job functionInformation Technology
- IndustriesSemiconductor Manufacturing
Referrals increase your chances of interviewing at Kulicke & Soffa by 2x
Sign in to set job alerts for "Compliance Specialist" roles.Compliance Manager/Officer - Regulatory Advisory and AffairsManager, Regulatory Monitoring and TestingAssistant Manager / Manager – Regulatory ComplianceManager/Senior Manager, Group ComplianceAssistant Manager, Compliance (Corporate Functions)Senior Compliance Officer / Compliance ManagerFinancial Crime Compliance Specialist (FCC)Compliance Manager - ARRC Secretariat (AVP)Ethics & Compliance Specialist (Data Analytics)- SingaporeWe're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr-
Risk and Compliance Associate
6 days ago
Singapore CAPITAL GOVERNANCE (S) PTE. LTD. Full timeCapital Governance (S) Pte Ltd is an advisory group which provides a comprehensive range of Governance, Risk Management and compliance (GRC) solutions aimed at assisting our clients in enhancing their overall GRC capabilities, one of the most critical areas of operations in an increasing complex business world.We are one of the most established GRC advisory...
-
Governance, Risk, and Compliance
1 week ago
Singapore Kulicke & Soffa Full timeGovernance, Risk, and Compliance (GRC) Lead Governance, Risk, and Compliance (GRC) Lead Get AI-powered advice on this job and more exclusive features. The GRC Lead will be responsible for responsible for initiating, running, and managing information security governance, risk management, audits, and compliance with SOX and other relevant regulations....
-
Governance, Risk and Compliance
2 days ago
Singapore ByteDance Full timeGovernance, Risk and Compliance (Centre of Excellence) - Ethics Office (Global)Singapore | Regular | Corporate Function / Support - Legal | Job ID: A Responsibilities Team Introduction: High ethical standards and a culture of integrity are essential to the Ethics Office's mission. The Ethics Office guides ethical leadership, develops and raises awareness of...
-
Governance, Risk, and Compliance
1 day ago
Singapore Kulicke & Soffa Full timeGovernance, Risk, and Compliance (GRC) Lead Governance, Risk, and Compliance (GRC) Lead Get AI-powered advice on this job and more exclusive features. The GRC Lead will be responsible for responsible for initiating, running, and managing information security governance, risk management, audits, and compliance with SOX and other relevant regulations....
-
Governance Risk and Compliance Specialist
2 weeks ago
Singapore CTES CONSULTING PTE. LTD. Full timeOur client is actively searching for a **Governance Risk and Compliance Specialist **to join their team! If you are a dynamic individual seeking a new career opportunity, read further! **The responsibilities of this role are**: - Assist and maintain governance frameworks to align with organisational objectives and regulatory requirements. - Assist in...
-
Governance Risk and Compliance Specialist
2 weeks ago
Singapore WSH EXPERTS PTE LTD Full time**Responsibilities** - Develop the culture of Tech risk governance and management across the organization, and ensure proper accountability in the management, tracking and reporting of tech and cyber risks. Review and establish ICT policies and process controls and conduct compliance checks. Support team lead and work with internal stakeholders Work with...
-
Governance Risk and Compliance Specialist
2 weeks ago
Singapore WSH Experts Pte Ltd Full timeDevelop the culture of Tech risk governance and management across the organisation, and ensure proper accountability in the management, tracking and reporting of tech and cyber risks. Review and establish ICT policies and process controls and conduct compliance checks. Support team lead and work with internal stakeholders Work with Application System...
-
IT Governance Risk Compliance Expert
2 weeks ago
Singapore beBeeCybersecurity Full timeSenior Cybersecurity Risk Governance ProfessionalThis is an exciting opportunity for a motivated and experienced professional to make a meaningful impact in cybersecurity risk governance.We are seeking a Senior Cybersecurity Risk Governance Professional to play a key role in shaping our organization's cybersecurity risk posture and influencing board-level...
-
Compliance Manager
6 days ago
Singapore CAREER CONNEX PRIVATE LIMITED Full time**Industry**:Global and Technology Industry Location: Central / West area **Skills**:Compliance, Corporate Governance and Risk Our client is an established Global Technology Integrator with strong presence across Asia, Middle East and Western Countries. We are assisting them in the search for a Compliance Manager expert in Corporate Governance, Risk,...
-
Senior Manager
7 days ago
Singapore Office of Risk Management and Compliance Full time**Posting Start Date**:21/01/2025 About ORMCThe Compliance, Data & Technology Risk unit of NUS Office of Risk Management and Compliance (“ORMC”) is seeking a highly skilled and experienced Compliance professional to oversee compliance risk management initiatives. The role is responsible for ensuring that the university is aware of and adheres to all...