Associate Director, Security Governance

Overview
This leadership role delivers Governance, Risk and Compliance (GRC) for AIA Singapore Line 1, covering governance reporting, Operational Technology risk management, compliance and audit functions as prescribed by AIA Group, industry regulations and the Monetary Authority of Singapore (MAS). The role also oversees AIA’s Cyber Security Awareness training.
The leader will maintain external stakeholder relations and work directly with the AIA Singapore Information Security Head. The individual must be an exceptional communicator for both technical and non‐technical issues across Line 2, Audit, Executive Committee, Board and Regulator communications. The occupant will lead and mentor a team of GRC professionals as they navigate scheduled and ad hoc inspections or audits of AIA’s controls, applying professional governance leadership experience.
Responsibilities
Drive management, monitoring and reporting methodology for information security and risk governance metrics, security incidents, policy/standards deviations, third‐party security assessments, and related items.
Prepare and present technology and security risk indicators and updates to security forums, Operational Risk Committees and Board Risk Committees.
Drive organizational self‐assessments against technology and security regulatory advisories, circulars, guidelines and notices.
Coordinate annual IT risk and control self‐assessment exercises per MAS notices/guidelines and internal policies; maintain the Group electronic Governance Risk and Compliance (eGRC) tool.
Manage deviations and exemptions in the context of technology and security policies and standards within the Group eGRC tool.
Communicate material changes to internal policies and standards to staff and key stakeholders.
Develop effective methods to deliver cybersecurity training to staff, IT teams, management, third‐party service providers and our agency forces.
Lead or participate in governance of specialized information security areas (e.g., IAM, cloud security, application security) and assist in enterprise‐wide risk and compliance coordination for the Technology division.
Promote information security awareness within teams and drive a continuous learning and development program for staff training (internal and external programs).
Qualifications and Experience
Advanced degree in Computer Science, Computer Engineering, Information Security or Information Systems.
Preferably hold one or more information security and audit qualifications: CISSP, CISA, CRISC, CCSP.
15 years of experience in a combination of roles such as:
Cybersecurity governance, monitoring and reporting of security metrics and risk indicators.
Leading responses to IT audits and regulatory inspections.
Managing IT risk and compliance assessments, including third‐party cyber hygiene assessments.
Development, review and management of deviations/exemptions to technology policies and standards.
Developing and driving an organization‐wide information security awareness program.
Managing a medium-sized team (e.g., 12 members in Singapore and remote).
Substantial experience in the financial industry, large tech firms or established auditing firms is advantageous.
Experience with information security standards such as ISO 27001 and other relevant frameworks is advantageous.
Knowledge of tools such as Power BI or JIRA; ability to implement automation is a plus.
Strong communication, coordination and interpersonal skills; solid stakeholder management; high energy, integrity and leadership.
Ability to adopt a strategic, big‐picture perspective to problem solving.
Apply and About AIA
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
About AIA
For over a century, AIA has served the ever-changing needs of our customers across Asia-Pacific. Our purpose to help millions live Healthier, Longer, Better Lives is at the heart of everything we do. We’re transforming to be faster, simpler and more connected to create better solutions and impactful experiences for customers and communities. AIA enables our people to act with clarity, courage and humanity in service of our Purpose.
Join Us
At AIA, we empower every one of our people to find their 'better' - in the work they do, the career they build, the life they live and the difference they make. Whether it’s investing in wellbeing, learning, relationships, or making a better impact on customers, a career at AIA will challenge you to find new ways to pursue your ‘better’.
AIA is committed to building a vibrant, diverse, and inclusive workforce for all employees to thrive in. Join us if you believe in creating a better tomorrow
Seniority level
Director
Employment type
Full-time
Job function
Other, Information Technology, and Management
Industries
Insurance
#J-18808-Ljbffr