Security & Technology Risk Management (TRM / $15K) (ID: 693469)

Responsibilities:

• Lead the design, implementation, and enhancement of the Technology Risk Management Framework region-wide.

• Manage the risk register and develop analytical frameworks for a thorough assessment of the organization's risk profile.

• Compile and deliver risk management metrics and reports to senior management in both business and IT sectors.

• Conduct risk assessments on internal processes and key third-party vendors, identifying risks and recommending controls for mitigation.

• Advise on policies, procedures, and controls related to cybersecurity, risk management, and compliance initiatives.

• Review and update Cybersecurity and Technology risk policies and procedures as necessary.

• Act as the primary contact for IT audit activities, facilitating communication between internal IT teams and auditors.

• Stay informed on technological advancements and regulatory updates, suggesting enhancements for more effective operations.

• Promote a positive risk and compliance culture, delivering training and awareness programs as required.

• Perform additional duties as directed by the supervisor.

Requirements:

• University degree in risk management, information security, computer science, or related fields.

• Minimum of 8 years of relevant experience in technology risk management, governance, and compliance.

• Demonstrated expertise in industry standards (COBIT, NIST, ITIL, ISO27001) and independent technology risk assessments.

• In-depth understanding of IT environments and cybersecurity controls, with practical experience in information security and data governance.

• Strong knowledge of the financial regulatory landscape in Asia, particularly with SFC in Hong Kong and MAS in Singapore; familiarity with regulatory environments in China, Taiwan, Korea, Australia, Thailand, and/or Japan is advantageous.

• Proven leadership capabilities, with the ability to build consensus and communicate effectively with both technical and non-technical stakeholders.

• Relevant professional certifications such as CISA, CISSP, CRISC, or equivalent are required

Interested candidates who wish to apply for the advertised position, please click on “Apply”. We regret that only shortlisted candidates will be notified.

EA License No.: 01C4394 (Persol Singapore PTE LTD)

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to Persol Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persolsingapore.com/policies. You acknowledge that you have read, understood, and agree with the Privacy Policy