Tech and Security Governance Specialist

2 weeks ago


Singapore Trust Bank Full time

Trust is the first of a new breed of banks in Singapore - digitally native and focused on delivering a delightful customer experience. You will work in a fast-paced and collaborative environment to solve new and interesting challenges each day. Together with our Trust team, you will help shape the future of our bank.

As a **Tech and Security Governance Specialist**, you will acquire new ways of working and be involved in solving interesting challenges, building innovative, industry-leading products and digital journeys for our customers and managing risks intelligently. Professionally, you will have the opportunity to work with cutting-edge cloud technologies, expand your security risk expertise in cloud and banking domains.

The **Tech and Security Governance Specialist** functions within Line 1.5, bridging the gap between first-line operations and second-line risk management in our cloud-native banking environment. This role combines hands-on security expertise with risk management capabilities to provide risk oversight of the Bank's Security posture while ensuring compliance with financial services regulations and cloud security frameworks.

**Key Responsibilities**:

- Develop, monitor and report on Key Control Indicators (KCIs) for critical security controls incl trend analysis reports on KCI performance and control effectiveness
- Track, assess and report on the impact of emerging security regulations and risk advisories on emerging threats and control implications.
- Design and implement control testing methodologies for cloud environments
- Perform regular control effectiveness assessments and validation
- Develop and maintain risk and control matrices mapping to regulatory requirements
- Lead control remediation efforts and track closure of identified gaps
- Guide implementation of controls to meet the financial and cloud-specific regulatory requirements.
- Support external, internal and regulatory examinations and audits
- Report on security risks to senior management and risk committees
- Prepare and deliver monthly security posture updates to the Technology and Information and Cyber Risk committee.

**Key Relationships**:

- Reports to: Head of Technology Risk
- Strategic Partnership: CISO (consultative relationship for security strategy alignment)
- Other Key Stakeholders:

- First Line: Cloud Engineering, DevOps Teams
- Second Line: Risk Management, Compliance Teams
- Regulators, Internal and External Auditors

**Required Qualifications**

**Experience**
- 8+ years of information security experience, with 5+ years in banking/financial services
- Proven experience in cloud security and GRC within regulated environments

**Technical & Analytical Skills**
- Must possess at least one of following certifications - CISSP, CISA, CISM, CRISC, GIAC.
- Experience in developing and tracking Key Control Indicators (KCIs)
- Ability to create clear, actionable risk assessment reports
- Strong data analytics skills for control performance monitoring
- Expertise in security metrics and dashboard development
- Understanding of cloud security (AWS, Azure, GCP)
- Knowledge of container security and microservices architecture
- Understanding of API security and banking integrations

**Risk and Control Knowledge**
- Expert knowledge of risk assessment methodologies and frameworks
- Deep understanding of control design and testing approaches
- Experience with control automation and continuous monitoring
- Proficiency in risk quantification and measurement techniques

**Domain Knowledge**
- Strong understanding of banking regulations and compliance requirements
- Good understanding of the payment card industry and Swift Customer Security Controls Framework requirements.

**Soft Skills**
- Ability to communicate effectively to regulators and auditors
- Strong stakeholder management across technical and business teams
- Experience in navigating regulatory and external examinations
- Excellent documentation and reporting skills



  • Singapore beBeeGovernance Full time

    Job Title: Tech Governance SpecialistAs a Tech Governance Specialist, you will play a pivotal role in ensuring the effective management of our organization's IT governance and internal controls.Developing and maintaining policies and procedures to ensure compliance with regulatory requirements.Collaborating with cross-functional teams to design and implement...


  • Singapore beBeeGovernance Full time

    Job Title: Security Governance Specialist Our organization seeks a skilled Security Governance Specialist to collaborate with teams across Asia-Pacific (APAC) and contribute to the development of our security governance program. Conduct risk assessments and control evaluations against regional and global regulatory requirements. Maintain awareness of...


  • Singapore Housing and Development Board Full time

    **About Us!** The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising...


  • Singapore beBeeGovernance Remote Work Freelance Full time

    **Job Title:**Security Governance Specialist **Job Summary: We are seeking a highly skilled and experienced Security Governance Specialist to join our team. In this role, you will be responsible for initiating, running, and managing information security governance, risk management, audits, and compliance with relevant regulations. **Responsibilities: ...

  • Senior Manager

    1 day ago


    Singapore NEXTAN TECH SG PTE. LTD. Full time

    **NEXTAN TECH SG **is a rapidly expanding global technology company with core business operations in Singapore and Guinea, supported by teams in China, Malaysia, and Australia. As we continue to grow, we are looking for a seasoned Senior Manager of Compliance and Governance to ensure that our operations adhere to the legal and regulatory requirements in both...


  • Singapore beBeeCybersecurity Full time

    Job Title: IT Governance and Security SpecialistAbout the RoleWe are seeking an experienced IT governance and security specialist to lead our first line of defence GRC function, delivering comprehensive governance, risk, and compliance oversight across technology and security operations.This is a rare opportunity for a seasoned governance and security leader...


  • Singapore UBS Full time

    Singapore - Information Technology (IT) - Group Functions **Job Reference #** - 285141BR **City** - Singapore **Job Type** - Full Time **Your role** - We are looking for an Tech Cyber Security Specialist - Product Owner to join our team and help us to: - own the suite of Application Security Testing Products - liaise with the Cyber Hygiene operational...


  • Singapore NTT SINGAPORE PTE. LTD. Full time

    **Job Title**: Security Governance Specialist **Work Location**: Alexandra Building, Singapore **Contract Duration**:1 Year (Renewable) **Experience Level**: 5+ Years (Mid-Level Role) **Employment Type**: Contract via NTT DATA Singapore **Client : A leading financial institution in Singapore.** We are looking for a Security Governance Specialist to...


  • Singapore AIA Full time

    At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone. - As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live...


  • Singapore beBeeSecurityGovernance Full time $90,000 - $120,000

    Security Governance SpecialistThis is an exciting opportunity for a skilled Security Governance Specialist to join our organization in Asia-Pacific (APAC) and contribute to the development of our security governance program.We are seeking a professional who can conduct risk assessments and control evaluations against regional and global regulatory...