Lead, Information Security

Do meaningful work with us. Every day.

At Amplify Health, we’re looking for individuals with ambition, resilience and passion for healthcare, insurance, wellness and digital technology. As a fast-growing business with the ambition of making people and communities across Asia healthier, we have exciting career opportunities available to help us achieve our vision.

Our Culture and Values

At Amplify Health, we believe in fostering a culture that embodies the spirit of Courageous Entrepreneurs. We are passionate and innovative individuals who continuously strive to push boundaries and think outside the box. We understand that calculated risks are essential for driving progress, and we view failures as valuable opportunities to learn and grow.

As Outstanding People, collaboration, learning, and growth are at the core of our values. We trust and rely on each other, working together as a unified team to achieve our goals. When success comes our way, we celebrate it as a collective achievement, and we are committed to improving and excelling together.

We firmly believe in the mantra of Discuss, Decide, Do. Listening is fundamental in our decision-making process, and we act promptly, ensuring accountability in everything we do. Simplicity is the key to our efficiency, and we get things done quickly and effectively while being guided by facts and understanding.

At the heart of our pursuits lies a Lasting Impact. We prioritize the needs of our customers, and we are crystal clear about the problems we are solving for them. Progress is our north star, and while we strive for excellence, we acknowledge that perfection is a journey, and we remain focused on delivering excellent products that make a tangible difference.

If you are a passionate and innovative individual who thrives in a collaborative environment, where courage is celebrated, and customer focus is paramount, we invite you to join our team. Together, we will shape the future with our unwavering commitment to excellence and the determination to make a lasting impact in the industry.
- What you will do_

You will be responsible to establish and lead Amplify Health’s information security programme. You will work closely with cross-functional teams (including AIA Global Information Security team) to develop and implement robust information security strategies and policies to safeguard sensitive information.

You will report to the Chief Technology Officer.
- How you would make a difference_

As a Lead, Information Security Officer in Amplify Health, you will focus on the governance, implementation and compliance of our Information Security policies, standards, procedures and guidelines to prevent the unauthorized use, release, modification or destruction of data/systems, specific to their Practice Area/Network. Work closely with security engineers and maneuvers resources to react and respond to mission-critical situations.

Your primary responsibilities include:

- Develop, implement, and oversee the information security programme that aligns with the company's overall business strategy.
- Develop and maintain information security policies, standards, procedures, and risk management plans.
- Ensure compliance with all applicable laws, regulations, industry standards, and best practices.
- Implement and manage security solutions, such as firewalls, intrusion detection/prevention systems, endpoint protection, data loss prevention, encryption, and other related technologies.
- Orchestrate and conduct penetration tests and other risk and vulnerability assessments to identify potential threats and security exposures and develop appropriate countermeasures and controls.
- Develop and implement security incident response plans, monitor security incidents, and conduct incident response and investigations as needed.
- Collaborate with internal and external stakeholders to ensure security is integrated into all aspects of the company's operations and play a key role in enterprise data governance.
- Work closely with software, data, AI/ML, and infrastructure engineers to provide security guidance and ensure that security is integrated throughout the software development lifecycle and embedded into our agile software development processes.
- Develop and deliver security awareness and training programs to educate employees on security policies and procedures.
- Develop and maintain relationships with external security experts and vendors.
- Develop a strategy to build, scale, and manage our security team and operations in line with the company growth.
- Stay up to date with the latest developments in information security, risk management, compliance, and governance, and incorporate them into the company's security program.
- What you need to be successful_

Qualification and Experience:

- Degree in Computer Science, Information Systems, Engineering, or a related discipline
- Proven track record in implementing and managing cybersecurity strategy, programs, risk as