Job Description In this role, you will drive 1st Line security defence and assurance for technology within this financial services customer.
As part of this dynamic role, you will report to Head, IT Governance, Security and Transformation and work closely with various functions within Technology, Risk Management and Business to establish, implement, operate, review and enhance the company’s security framework and processes to ensure compliance with all relevant regulatory requirements.
Job Profile Summary: IT Security
•Lead the 1st line IT Security and Assurance team, providing leadership and overseeing the compliance to relevant security frameworks and policies to ensure security controls are in place
•Direct the cyber security strategy, identify threat scenarios, quantify risks and work with stakeholders to ensure mitigation controls are applied
•Ensure information and technology assets are adequately protected
•Analyse and correlate information security events to identify appropriate event handling actions
•Monitor digital & cyber security footprint, overseeing all IT Operations and Infrastructure (alerts, logs, security surveillance)
•Lead for working with Pentest vendor on their security assessments and scanning, VA and follow up with risk mitigation. While working alongside the Engineering and Product teams on assessments.
•Define the reporting strategies and metrics for effective communication of IT security program•Recommend suitable enhancements to improve information security performance
•Evaluate new requests on cyber & IT security aspects to ensure meeting with our security requirements and posture
Technical Skills & work experience:
•8 years or more experience working, preferably in Financial Services / Insurance industry.
At least 3-5 years in a supervisory position is desirable
•Strong Technical Knowledge in CyberSecurity, Pentest, SDLC, and Cloud
•Familiar with Singapore regulatory IT security requirements, example: MAS TRM, CyberHygiene notice•Bachelor’s Degree or diploma in IT / Computer Science/Computing or related.
•Following certifications or similar would be beneficial:
oCertified Information Systems Security Professional (CISSP)
oCertified Information Systems Auditor (CISA)
oCertified Information Security Manager (CISM)
oGlobal Information Assurance Certification (GIAC)
Personal Traits:
•Exceptional team player
•Strong communication skills & ability to engage senior stakeholders on strategicplans
•Ability to lead committees and provide timely status updates
•Excellent problem analysis skills. Innovative and creative in developing solutions
•Ability and willingness to be hands-on
•Strong attention to details
•Ability to work independently