Current jobs related to Information Security Governance, Risk and - Singapore - FCM
-
Information Security Risk Manager
2 weeks ago
Singapore beBeeSecurity Full time $80,000 - $120,000Job Title: Information Security Risk ManagerWe are seeking an experienced Information Security Risk Manager to collaborate with our teams across Asia-Pacific and contribute to the development of our security governance program.Conduct risk assessments and control evaluations against regional and global regulatory requirements.Maintain awareness of APAC...
-
Information Security Governance Lead
1 week ago
Singapore beBeeCybersecurity Full time $90,000 - $120,000**Job Title:** Cybersecurity Governance SpecialistCybersecurity governance involves ensuring that an organization's information security policies and procedures are well-managed, compliant with regulatory requirements, and aligned with industry best practices.This role is designed to support the Head of Information Security in enhancing and maintaining the...
-
IT Security Specialist
1 week ago
Singapore Housing and Development Board Full time**About Us!** The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising...
-
Information Technology
7 days ago
Singapore SINGAPORE AIRLINES LIMITED Full timeJob Description You will be a member of the Group Information Security Team responsible for ensuring corporate applications, systems, networks, and digital assets are adequately protected and mitigated against cyber threats and risks. You will help drive cybersecurity and risk management efforts and user awareness and education within the Singapore Airlines...
-
Singapore ANZ Full timeSee job description for details **About Us** **About the Role** As a Technology & Information Security Governance Lead (Line 1 Risk) for Singapore and International Cloud in our Digital Banking Operations Technology team, you will drive technology operational risk excellence using the ANZ Risk Management Framework. You will be supporting Country...
-
Associate Director, Security Governance
7 days ago
Singapore AIA Hong Kong and Macau Full timeAssociate Director, Security Governance page is loaded Associate Director, Security Governance Apply locations Singapore, SG-AIA Singapore time type Full time posted on Posted Yesterday job requisition id JR-59923At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone. As pioneering innovators for over 100...
-
IT Security Governance
1 week ago
Singapore Housing and Development Board Full time**About Us!** The mission of Housing & Development Board (HDB) is to provide affordable, quality housing and a great living environment where communities thrive. To achieve its mission, HDB aims to be data-driven to the core and adopt evidence-based decision making in developing better housing policies service, improving service delivery and optimising...
-
Information Security Risk Management Lead
1 week ago
Singapore TENTEN Partners Pte. Ltd. Full time**Our client is a leading international bank with a global presence and multiple business units.** **Job Purpose** Information Security Risk Managers are responsible for managing information and cyber security risk and instrumental in ensuring our clients organisation-wide Cyber Resilience. This role will serve as a second line of defence accountable for...
-
Senior Executive
3 days ago
Singapore IOTALENTS PTE. LTD. Full time**Responsibilities**: - Assist in developing and driving compliance/governing framework for ongoing compliance against relevant IT legislative/regulatory requirements (e.g. PDPA, MAS TRM & PCI) and reporting to IT Management. - Assist in developing and driving compliance/governing framework for the ongoing compliance against the organizational information...
-
Singapore RANDSTAD PTE. LIMITED Full timeTo apply, It will be great if you could share your CV to . Alternatively, you can apply at High job stability with a multi bullion company Autonomy to make key decisions for IT Governance About the company Our client is an established global company with over 20 years of experience in the industry. As part of their plan to aggressive growth plan in...
Information Security Governance, Risk and
2 weeks ago
**Job no**: 511715
**Brand**: FCM
**Work type**: Full time
**Location**: Singapore
**Categories**: Information & Technology
**The GRC Security Analyst Singapore** will plan and implement policies, procedures, standards, and controls to govern the protection of the company’s information systems, networks, and data. The GRC security analyst will stay up to date on the latest cybersecurity intelligence to modify standards and controls that govern cybersecurity across the corporation and to oversees effective system-wide security analysis; intrusion detection; standards and testing; risk assessment; awareness and development of policies, standards, and guidelines
The GRC Security Analyst will be responsible for updating and managing the security policy framework and relevant standards; overseeing applicable security, privacy, contractual and compliance requirements (i.e., ISO27001, Payment Act, PDPA, PCI-DSS, AML/KYC, MAS TRM and local privacy laws) through strategy development, controls definition and assessment and process oversight.
The purpose of this position is to provide highly skilled technical and information security expertise for development and implementation of the information security risk management program as well as handling Compliance and security requests coming from Business and customers (E.g. RFP, incidents, communication)
The GRC Security Analyst updates and maintains control matrices and spreadsheets and provides recommendations for management’s consideration. The incumbent works with internal, regional, Global teams, external providers to provide supportive documentation as applicable.
**Key Responsibilities**
- Establish policies, processes, and procedures in line with local and international regulations
- Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances Company business objectives.
- Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts to bring visibility and transparency.
- Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting Privacy data, and Payment Card Industry Data Security Standards (PCI DSS).
- Verify the security compliance posture against the regulations and standards and derive a security implementation plan for remediation
- Liaise with all departments to identify, track, and provide remediation guidance for new projects, services and/or third-party contracts in terms of information security assurance
- Oversee third party assessment standards and privileged user monitoring as a check on critical system access
- Establish and oversee formal vulnerability management, penetration testing and security posture assessment programs
- Oversees and improves execution of Disaster Recovery Plan and BCP, Backup /restore policy (metrics, dashboard) in collaboration with ISS & IT Ops teams.
- Trains, guides, and acts as a resource on security assessment functions to other departments within the Company
**Key Competencies and Skills**
- Minimum 5 years working experience in IT/IS/Audit/Business/Technology
- 5 years in a security governance, risk, and compliance management experience
- Experience in large scale audit or governance projects
- Strong knowledge of current and emerging cyber security risks, and innovative risk management methods and solutions
- Ability to collaboratively develop a risk strategy in conjunction with stakeholders
- Strong analytical thinking, written, and oral communication and presentation skills
- Broad understanding of security and privacy concepts
- Ability to adapt and embrace change in a fast-paced, changing environment
- Ability to effectively communicate and relate to all levels of the organization
- Able to understand contracts and technical documentation and able to assess it for consistency and alignment with processes and controls outlined in requirements and audit materials
- Excellent communication skills at all levels and ability to adapt style to suit audience
- Industry recognized certification in security (e.g., CISSP, CISA, CISM, CEH, etc.) is preferred
