Senior Information Security Risk Manager

**About Us**

Sygnum is the world’s first regulated Digital Asset Bank, founded on Swiss and Singapore dual heritage, headquartered in Switzerland and operating globally. We make digital assets bankable, secure and convenient, empowering our clients to invest in the digital asset economy with complete trust. For the first time with Sygnum, major currencies and digital assets, including Bitcoin, Ethereum and asset tokens are seamlessly integrated in one account. Signum’s diverse and talented team of banking, investment and DLT experts is shaping the development of a trusted digital asset ecosystem.

Our CISO team’s mission is to be in the vanguard of digital banking security, fostering a safe and prosperous financial future for our stakeholders while setting pioneering new industry standards for security and trust in the digital age.

**About You**

You are a dedicated and seasoned Information Security Risk Manager, passionate about safeguarding digital assets. Your expertise spans risk assessment, regulatory compliance, and industry best practices. Proficient in effective communication with senior stakeholders you bring a proactive, analytical, and detail-oriented approach. Eager to learn and thrive in a dynamic, collaborative environment, you come with a minimum of 5 years of hands-on experience in information security and risk management. Familiarity with Singapore's financial industry regulations is advantageous.

**What we offer**
- Strategic Impact: Collaborate as a vital member of Sygnum's global CISO team to customize the Information Security strategy to meet local market and regulatory requirements (MAS TRM).
- Effective Project Management: Lead transparent project management efforts and actively assist in implementing the strategy, with a primary focus on Singapore while considering global implications.
- Regulatory Compliance: accountable for driving the annual technology risk management audit and tech queries from the MAS
- Expert Advisory: Provide timely, high-quality information security guidance to the business, clients, and partners. Translate technical risks and control-related aspects into non-technical, business-focused language.
- Security Culture Advocacy: Foster a culture of information security awareness and ethical conduct by supporting regular Information Security Risk communications, awareness programs, and training.
- Prioritization and Collaboration: Drive information security and compliance requirements, collaborating closely with the rest of the organisation to prioritize the development of new features and controls.
- Risk Management: Assess, monitor, and report on risks, including third-party risks, within the risk management process. Suggest and implement potential mitigation measures to enhance the security posture.
- Incident Management: take local ownership and perform investigation of any suspected security incidents.
- Leadership Development: present on security matters to the local Singapore Executive board, regulators, auditors, and business partners.

**What you offer**
- Educational Background: A technical university degree or equivalent experience, along with recognized certifications (e.g., CISSP, CISA, CISM, CRISC, CCSP, etc.).
- Professional Experience: Over 5 years in IT security and IT audit, preferably within the regulated financial services sector, with prior team leadership and line management experience.
- Security Expertise: In-depth knowledge of current information security norms, standards, and control frameworks (e.g., ISO 2700x, BSI, NIST). Familiarity with regulatory and legal requirements, including MAS compliance.
- Communication Skills: Proven English language communication and interpersonal skills at all levels.
- Cloud Security: Experience managing security solutions and information security in cloud environments.
- Emerging Technologies: Understanding of digital assets, web3, and blockchain technologies.
- Analytical Skills: Strong analytical, problem-solving, and organizational skills with high adaptability in a fast-changing environment.
- Agile and DevSecOps: experience working in these models is advantageous, promoting agility and security in development processes is an advantage.
- Professional Attributes: Demonstrated integrity, business acumen, client-focused mindset, and openness to feedback.
- Positive Mindset: A positive, forward-thinking personality with an entrepreneurial mindset and the capability to independently drive projects to success.

**Our Benefits**
- The chance to be part of a movement shaping the future of finance.
- An amazing, diverse, highly skilled, international, and motivated team of professionals.
- Competitive salary packages and chances to leave individual footprints.
- Flexible working time models.
- Be guided by experienced leadership teams with a track record of scaling and facilitating smart growth. Learn and grow with the best in the industry.

If you’re passionate for technology and blockchain with