Director, Information Security Management, Enterprise Technologies
4 weeks ago
Description
The Opportunity
The ETS Asia Control Integrity team is the security and compliance team under the ETS Asia Umbrella. The team performs security assessments for new technologies and new projects, in addition to performing an assurance function to ensure ETS comply with company and regulatory security requirements. The incumbent will be an individual contributor reporting to the AVP of the team and will be the Deputy for the AVP.
The incumbent’s primary responsibility includes design, implement, and monitor security controls for the cloud-based infrastructure (IaaS), platform (PaaS, Kubernetes) and services. The second responsibility is to oversee network security assessment and remediation activities. The third responsibility is to oversee audit and second line assurance review related activities.
The incumbent will create positive impact to the infrastructure and platform managed by ETS to make sure products and services are provisioned and maintain securely in its life cycle.
What motivates you?
You obsess about customers, listen, engage and act for their benefit
You think big, with curiosity to discover ways to use your agile mindset and enable business outcomes
You thrive in teams, and enjoy getting things done together
You take ownership and build solutions, focusing on what matters
You do what is right, work with integrity and speak up
You share your humanity, helping us build a diverse and inclusive work environment for everyone
We are looking for someone with:
Degree holder of computer science or engineering.
Possess Information security (CISSP, CISM, SANS) and auditing (CISA) designations.
At least 5 years working experience focusing on security architectural design and assessment for cloud based infrastructure and platform.
At least 10 years of working experience in the information security areas including cloud security, network security, AAA, RBAC, encryption, security scanning, hardening, privilege ID management etc.
Experience with defining security guardrails in DevOps CI/CD pipelines.
Experience with microcontainer architecture and docker containers based applications.
Experience with container management tools such as Kubernetes
Experience in security scanning tools and security controls in microservices env.
Strong experience on automation for security control enforcement and monitoring
Ability to manage multiple tasks for multiple stakeholders which will need to be prioritized. Results oriented; ability to balance multiple priorities and projects.
Knowledge of control frameworks, risk management practices and regulatory requirements.
Well-developed impact and influence skills.
Track record of building strong relationships across technology functions.
Excellent customer focus and commitment to quality.
Knowledge and understanding of the financial industry.
On the Job you will:
Project and Technology Information Risk Management
Perform ETS project and technology information risk assessments including assessing risks and define controls as well as tracking the implementation of controls. Assessment focus for the incumbent is the cloud-based infrastructure, platform and services.
Design, document and/or implement BAU security controls applicable to the cloud-based infrastructure, platform and services.
Assess, monitor, guide continuous improvement of the DevSecOps technologies and processes.
Evaluate products for implementing security controls in the cloud or on-premises spaces.
Develop Infrastructure-as-code to automatically and continuously enforce security controls.
Provide oversight to the direct reports specialized on network security to perform network security assessment and lead remediation activities.
Assurance Review
Establish security compliance monitoring mechanism to periodically and automatically measure security control operation effectiveness.
Establish security metrics for overall security posture reporting.
Manage audit activities and second line assurance review activities to steer these reviews to focus on high risk processes and technologies. Perform pre-audit to establish/refine controls and minimize audit issues.
What can we offer you?
A competitive salary and benefits packages.
A growth trajectory that extends upward and outward, encouraging you to follow your passions and learn new skills.
A focus on growing your career path with us.
Flexible work policies and strong work-life balance.
Professional development and leadership opportunities.
Our commitment to you
We lead with our Values every day and bring them to life together. Boundless opportunity
We create opportunities to learn and grow at every stage of your career. Continuous innovation
We invite you to help redefine the future of financial services. Delivering the promise of Diversity, Equity and Inclusion
We foster an inclusive workplace where everyone thrives. Championing Corporate Citizenship
We build a business that benefits all stakeholders and has a positive social and environmental impact.
About Manulife and John Hancock
Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Asia, Canada, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2022, we had more than 40,000 employees, over 116,000 agents, and thousands of distribution partners, serving over 34 million customers. At the end of 2022, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, including total invested assets of $0.4 trillion (US $0.3 trillion), and segregated funds net assets of $0.3 trillion (US$0.3 trillion). We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges, and under ‘945’ in Hong Kong.
Manulife is an Equal Opportunity Employer
-
Director, Information Security
4 days ago
Singapur, Singapore Ensign InfoSecurity Full timeDirector, Information Security page is loaded Director, Information Security Apply locations Singapore time type Full time posted on Posted 30+ Days Ago job requisition id JOBREQ- Ensign is hiring !As Director, Information Security, you will play a crucial role in implementing Ensign's cybersecurity vision. Reporting to the Information Security Office, you...
-
Director, Information Security
4 days ago
Singapur, Singapore Ensign InfoSecurity Full timeDirector, Information Security page is loaded Director, Information Security Apply locations Singapore time type Full time posted on Posted 30+ Days Ago job requisition id JOBREQ- Ensign is hiring ! As Director, Information Security, you will play a crucial role in implementing Ensign's cybersecurity vision. Reporting to the Information Security Office, you...
-
Director, Information Security
2 months ago
Singapur, Singapore Ensign InfoSecurity Full timeEnsign is hiring !As Director, Information Security, you will play a crucial role in implementing Ensign's cybersecurity vision. Reporting to the Information Security Office, you will collaborate with senior management and business units on cybersecurity initiatives. You will play a crucial role in supporting the CISO in establishing and maintaining an...
-
Director, Information Security
2 weeks ago
Singapur, Singapore Ensign InfoSecurity Full timeEnsign is hiring As Director, Information Security, you will play a crucial role in implementing Ensign's cybersecurity vision. Reporting to the Information Security Office, you will collaborate with senior management and business units on cybersecurity initiatives. You will play a crucial role in supporting the CISO in establishing and maintaining an...
-
Director, Information Security
4 weeks ago
Singapur, Singapore Ensign InfoSecurity Full timeEnsign is hiring !As Director, Information Security, you will play a crucial role in implementing Ensign's cybersecurity vision. Reporting to the Information Security Office, you will collaborate with senior management and business units on cybersecurity initiatives. You will play a crucial role in supporting the CISO in establishing and maintaining an...
-
Singapur, Singapore Manulife Full timeJob Description The Opportunity The ETS Asia Control Integrity team is the security and compliance team under the ETS Asia Umbrella. The team performs security assessments for new technologies and new projects, in addition to performing an assurance function to ensure ETS comply with company and regulatory security requirements. The incumbent will...
-
Singapur, Singapore Manulife Full timeJob Description The Opportunity The ETS Asia Control Integrity team is the security and compliance team under the ETS Asia Umbrella. The team performs security assessments for new technologies and new projects, in addition to performing an assurance function to ensure ETS comply with company and regulatory security requirements. The incumbent will...
-
Information Technology
2 weeks ago
Singapur, Singapore Singapore Airlines Full timeJob DescriptionThe End User Computing (EUC) team in SIA provides IT services for all SIA Group employees in Singapore and Overseas. We are looking for an experienced professional with relevant experience to be part of the EUC team and play a significant role in modernizing our enterprise authentication system. This position also offers significant...
-
Regional Information Security Manager
2 months ago
Singapur, Singapore KPMG - Singapore Full timeJob DescriptionGISG (Global Information Security Group) is one of five domains within KPMG's Global Technology & Knowledge group. GISG provides the information protection and technology infrastructure that secures KPMG's technology environment and connects its network of member firms. GISG works with the other GT&K domains to ensure that appropriate security...
-
Regional Information Security Manager
4 weeks ago
Singapur, Singapore KPMG - Singapore Full timeJob DescriptionGISG (Global Information Security Group) is one of five domains within KPMG's Global Technology & Knowledge group. GISG provides the information protection and technology infrastructure that secures KPMG's technology environment and connects its network of member firms. GISG works with the other GT&K domains to ensure that appropriate security...
-
Regional Information Security Manager
3 weeks ago
Singapur, Singapore Kpmg Services Pte. Ltd. Full timeGISG (Global Information Security Group) is one of five domains within KPMG's Global Technology & Knowledge group. GISG provides the information protection and technology infrastructure that secures KPMG's technology environment and connects its network of member firms. GISG works with the other GT&K domains to ensure that appropriate security controls are...
-
Regional Information Security Manager
2 weeks ago
Singapur, Singapore Kpmg Services Pte. Ltd. Full timeGISG (Global Information Security Group) is one of five domains within KPMG's Global Technology & Knowledge group. GISG provides the information protection and technology infrastructure that secures KPMG's technology environment and connects its network of member firms. GISG works with the other GT&K domains to ensure that appropriate security controls are...
-
Information Technology
2 weeks ago
Singapur, Singapore Singapore Airlines Limited Full timeJob DescriptionThe successful candidate will join the Applications Services department in SIA Information Technology DivisionResponsibilitiesPerform the role of application developer, to create complex distributed architecture solutionsDesign, code and implement from layout to product features using best software development practicesRecord all...
-
Manager, Information Security
2 weeks ago
Singapur, Singapore OCBC Bank Full timeGeneral Description:As the Manager of Information Security and Digital Risk Management (ISDRM), you will be responsible for supporting the governance and oversight of information security and digital risks within OCBC Malaysia. Your main role involves providing defense for cyber, information security, and digital risk management alongside the CISO/Head of...
-
Information Security Manager
4 weeks ago
Singapur, Singapore FWD SINGAPORE PTE. LTD. Full timeRoles & ResponsibilitiesPURPOSE· Supports BISO in providing oversight and governance of Information security risk and security policy requirements for FWD Singapore.· Serves as the process owner and handles all the Information Security risks and related issues of FWD Singapore· Ensure IT operations and activities comply with Information Security standards...
-
Information Security Manager
1 month ago
Singapur, Singapore FWD SINGAPORE PTE. LTD. Full timeRoles & ResponsibilitiesPURPOSE· Supports BISO in providing oversight and governance of Information security risk and security policy requirements for FWD Singapore.· Serves as the process owner and handles all the Information Security risks and related issues of FWD Singapore· Ensure IT operations and activities comply with Information Security standards...
-
Information Security Manager
4 weeks ago
Singapur, Singapore FWD Life Insurance Corporation Full timeFWD Group is a pan-Asian life insurance business with more than 11 million customers across 10 markets, including some of the fastest-growing insurance markets in the world. FWD reached its 10-year anniversary in 2023. The company is focused on making the insurance journey simpler, faster and smoother, with innovative propositions and easy-to-understand...
-
Information Security Manager
4 weeks ago
Singapur, Singapore FWD Life Insurance Corporation Full timeFWD Group is a pan-Asian life insurance business with more than 11 million customers across 10 markets, including some of the fastest-growing insurance markets in the world. FWD reached its 10-year anniversary in 2023. The company is focused on making the insurance journey simpler, faster and smoother, with innovative propositions and easy-to-understand...
-
Information Technology
1 month ago
Singapur, Singapore Singapore Airlines Full timeJob DescriptionYou will be a member of the Group Information Security Team responsible for ensuring that IT solutions are developed and designed with security inbuilt. Key Responsibilities Provide security consultancy, technical guidance, expertise, solutions, and education for the enterprise. Advise IT application and infrastructure teams on application and...
-
Information Technology
4 weeks ago
Singapur, Singapore Singapore Airlines Full timeJob DescriptionYou will be a member of the Group Information Security Team responsible for ensuring that IT solutions are developed and designed with security inbuilt. Key Responsibilities Provide security consultancy, technical guidance, expertise, solutions, and education for the enterprise. Advise IT application and infrastructure teams on application and...
