Lead, IT Governance, Risk and Compliance
1 day ago
Lead, IT Governance, Risk and Compliance Job Description Responsibilities: IT Governance and Security Awareness Review and update internal IT policies/standards; communicate changes of internal policies/standards to staff and stakeholders. Develop and deliver cybersecurity training for staff, management, board of directors, agents and vendors. Track and manage deviations from IT policies and standards. Report on key information security risk metrics, including policy deviations and third‑party assessments. Present technology and security risk updates to management and board committees. Technology Risk Management Lead regular risk assessments and continuous monitoring of technology risks, including emerging threats and new technologies. Manage technology risks related to third‑party service providers and business partners. Oversee IT Risk Control Self‑Assessment and Control Testing to evaluate the design and operating effectiveness of key controls. Communicate technology risks and mitigation strategies to relevant stakeholders, ensuring transparency and alignment. Technology Compliance and Assurance Facilitate regulatory engagements which include inspection, survey, query and ad‑hoc requests from regulators related to IT division. Lead organisational self‑assessments against technology and security related regulatory notices, circulars, guidelines and advisories. Coordinate external/internal audits and cybersecurity maturity assessment related to IT division. IT Access Review Drive enterprise access review activities, including roles to entitlements review, segregation of duties rules review, user access review. Drive the user administration activities review and SAP log review. Specialised Areas Governance Support enterprise‑wide risk and compliance initiatives for the Technology division in specialised areas under information security, such as IAM, cloud security, application security, data security, AI security, etc. Promote information security best practices and continuous improvement. Champion ongoing staff learning and development on cybersecurity and technology risk domains. Requirements: Degree or Diploma in Computer Science, Information Technology, or related field. Minimum 10 years’ experience in cybersecurity governance, risk monitoring, audit response, and compliance assessments. 2 - 4 years of team leading experience and managing teams of 8-10 members. Proven experience leading IT audits and regulatory inspections Background in financial industry, big tech or established auditing firms preferred. Strong knowledge of MAS Technology Risk Management, Cyber Hygiene, Outsourcing, and Business Continuity Management requirements. Familiarity with control frameworks (COBIT, NIST CSF, ISO 27001). Practitioner and holder of IT risk certifications (CISA, CRISC, CISSP). Proficiency in office productivity tools and business intelligence platforms (Microsoft Office, PowerBI, Archer, Tableau). Demonstrated ability to analyse risk and control issues, challenge the status quo, and drive pragmatic solutions. Track record in developing and driving information security awareness programs. Excellent interpersonal, coordination, communication, presentation, and writing skills. Meticulous, independent, and collaborative work style. #J-18808-Ljbffr
-
Compliance Manager
23 hours ago
Singapore Office of Risk Management and Compliance Full time**Posting Start Date**:21/01/2025 About ORMCAt NUS Office of Risk Management and Compliance (ORMC), we not only manage risks to build the University’s resilience but also help shape them into opportunities to empower the community. We will continually support and partner with our stakeholders within the University to make this possible. DATA PRIVACY -...
-
Lead, IT Governance, Risk and Compliance
1 day ago
Singapore INCOME INSURANCE LIMITED Full timeWe are seeking an experienced Lead, IT Governance, Risk and Compliance to lead our Income Insurance Line 1 Technology GRC function. This role reports to the Head of IT Risk and Security and acts as a key communicator across technical and non-technical audiences, including Technology Risk Oversight, Audit, Executive Committee, Board, and Regulators. The...
-
Lead, IT Governance, Risk and Compliance
4 days ago
Singapore Income Insurance Limited Full timeDescriptionResponsibilities:IT Governance and Security AwarenessReview and update internal IT policies/standards; communicate changes of internal policies/standards to staff and stakeholders.Develop and deliver cybersecurity training for staff, management, board of directors, agents and vendors.Track and manage deviations from IT policies and...
-
Governance, Risk and Compliance Specialist
23 hours ago
Singapore Unison Consulting Pte Ltd Full timeTotal 10 Years of experience out of which at least 5 years relevant experience in ICT cybersecurity, data security, audit management, governance, risk and compliance management - Relevant certifications in IT governance, IT audit, cyber or data security (e.g. CISSP, CISM, CISA, etc.) preferred. - Ability to work with cross-functional, multi-disciplined team...
-
Senior Manager
1 week ago
Singapore Office of Risk Management and Compliance Full time**Posting Start Date**:21/01/2025 About ORMCThe Compliance, Data & Technology Risk unit of NUS Office of Risk Management and Compliance (“ORMC”) is seeking a highly skilled and experienced Compliance professional to oversee compliance risk management initiatives. The role is responsible for ensuring that the university is aware of and adheres to all...
-
IT Governance, Risk and Compliance
2 weeks ago
Singapore Grant Thornton Full timeLOCATION:SINGAPOREJOB ID:167CATEGORIES:SUPPORT SERVICESJOB TYPE:PERMANENTResponsibilitiesDevelop, maintain, and enforce IT policies, standards, and proceduresDefine and manage the IT governance framework aligned with business objectivesDevelop and maintain IT risk management methodologies and processesConduct regular IT risk assessments, identifying threats,...
-
Governance, Risk and Compliance Specialist
4 days ago
Singapore Tech Aalto Full timeJob Title: Governance, Risk and Compliance SpecialistPosition Type:ContractJob Description:We are looking for experienced Governance, Risk, and Compliance (GRC) Specialists to join our team. This role is focused on enhancing and operationalizing security policies, conducting risk assessments, and managing compliance with cybersecurity standards. The ideal...
-
Senior IT GRC Leader: Governance, Risk
1 day ago
Singapore Income Insurance Limited Full timeA leading insurance company in Singapore seeks an experienced Lead for IT Governance, Risk and Compliance. The successful candidate will lead a team in cybersecurity governance and risk management, ensuring compliance with regulatory standards. The role requires a minimum of 10 years of relevant experience, including team leadership and a background in the...
-
Information Security Governance, Risk
3 days ago
Singapore PACIFIC PRIME INSURANCE BROKERS SINGAPORE PTE. LTD. Full time**Summary** Working as part of the information security office within the IT department at Pacific Prime CXA, the GRC (Governance, Risk and Compliance) Manager will be responsible for leading the day-to-day IT compliance, data governance and IT risk management functions. Primary responsibility will include defining, creation, management and maintenance of...
-
IT Compliance, Governance
4 days ago
Singapore IT CONSULTANCY & SERVICES PTE LTD Full timeWill cover the following areas: - Information Security policies & procedures - Evaluates, tests, monitors, and maintains information systems (IS) and cyber security policies, procedures and systems. Ensures that Information Systems and cyber security plans, controls, processes, standards, policies, and procedures are aligned with Information Security and...
