x
Get our mobile app
Fast & easy access to Jobstore
Use App
Congratulations!
You just received a job recommendation!
check it out now
Browse Jobs
Companies
Campus Hiring
Download App
Browse Jobs
Companies
Campus Hiring
News
Download App
Employers
View All Jobs
Jobs in Singapore
Jobs in Singapore   »   Jobs in Singapore   »   Legal / Public / Security Job   »   Information Security Governance, Specialist
banner picture 1 banner picture 2 banner picture 3

Information Security Governance, Specialist

Aia Singapore Private Limited

Aia Singapore Private Limited company logo
Job Type   /   Job Level
Full-time   /   Others/Any
Job Location
Singapore, Singapore, Singapore
Salary Offered

FIND YOUR 'BETTER' AT AIA

We don’t simply believe in being ‘The Best’. We believe in better - because there’s no limit to how far ‘better’ can take us.

We believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the life they live and the difference they make. So that together we can support even more people - including our own - to live Healthier, Longer, Better Lives.


If you believe in better, we’d love to hear from you.


About the Role


This position is responsible for to providing consultation, professional advice, awareness/training on information security and key technology risk matters relating to the abovementioned geographical responsibilities, thereby contributing to building a strong information security risk culture cantered on people, processes and technology. The role will also coordinate regular governance engagements and being involved in technology-related audit engagements for AIA Singapore, and exercise professional judgment and assessments on the material to be provided by the various process and control owners for the audits.


What you will do:


Information Security & Technology Risk Metrics

  • Support the alignment of various information security and technology risk metrics for management reporting and escalation – this includes reporting/escalation of outstanding or overdue action required from penetration tests, vulnerability assessments, security incidents, policy/standards deviations, third party security assessments, etc.
  • Drive the monthly Technology Security Governance forum focusing on highlighting metrics impacting the Company’s cybersecurity metrics.
  • Collate and review collated metrics and material relating to the Operational Risk Management forums, Key Risk Indicators and Key Risk Tolerance Indicators for cybersecurity and technology processes.

Risk Assessments, Audit and Regulatory Management

  • Support Technology related audit engagements with statutory auditor and regulator, following up with relevant parties to ensure all issues identified are remediated.
  • Support the delivery of annual IT risk and control self-assessment exercises according to MAS regulatory notices/guidelines, internal enterprise IT policies, and standards.

Policy, Standards and Exception Management

  • Communicate material changes to internal policies/standards to collaborators. Facilitate risk evaluations and exception handling to deviations from the policies, standards and regulatory requirements.

What you should have:

  • University degree in one of the following or related disciplines (Computer Science, Computer Engineering, Information Security, Information Systems).
  • 5 years or more of relevant work experience, including at least 2 years of experience in IT audit, risk management, compliance and/or governance roles, with particular expertise and knowledge of governance reporting of technology risk issues and cybersecurity.
  • Rich working experience from financial industry, big tech firms or established auditing firms will be considered favorably.
  • Experience and exposure in information security standards such as ISO27001 and PCIDSS will be an advantage.
  • Preferably a holder of one or more of the following information security and audit qualifications: Security+ and CEH.
  • Candidates with advanced level qualifications such as CISSP, CISA, CRISC, CCSP will have added advantage.
  • Good Communication, Coordination and Interpersonal Skills. Good experience working alongside and opposite external auditors as well as regulatory bodies Meticulous and analytical traits Strong programme/Project Management skills High drive, energy and good demeanor over teamwork High levels of professional integrity.
  • Eagerness to learn and develop one’s knowledge in information security and computing, especially on emerging computing fields such as cloud security, DevSecOps, etc.


Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.

You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.

✱   This job post has expired   ✱

Sharing is Caring

Know others who would be interested in this job?
Similar Jobs
Legal Counsel - APAC & South Africa
Schréder
Quick Apply
Cyber Security Lead Engineer
Tanglin Trust School Limited
Quick Apply
Security Operation Centre Analyst
Phoenix Solutions (s) Pte. Ltd.
Quick Apply
Cyber Security Operations Associate
Jpmorgan Chase Bank, N.a.
Quick Apply
Enforcement support officer
Wsh Experts Pte. Ltd.
Quick Apply
Security Engineer (IT Solutions, up to $4,200)
Recruit Expert Pte. Ltd.
Quick Apply
Security and Safety Officer (Warehouse/ Distribution Centre)
Recruitpedia Pte. Ltd.
Quick Apply
Legal Counsel/ Compliance Officer (MNC, Precision Tools)
Talent Trader Group Pte. Ltd.
Quick Apply
Senior, Legal Assistant Executive (MNC)
Talent Trader Group Pte. Ltd.
Quick Apply
Legal Secretary
Ambition Group Singapore Pte. Ltd.
Quick Apply
© 2024 Jobstore. All rights reserved.