x
Get our mobile app
Fast & easy access to Jobstore
Use App
Congratulations!
You just received a job recommendation!
check it out now
Browse Jobs
Companies
Campus Hiring
Download App
Browse Jobs
Companies
Campus Hiring
News
Download App
Employers
View All Jobs
Jobs in Singapore
Jobs in Singapore   »   Jobs in Singapore   »   Legal / Public / Security Job   »   Information Security Specialist
banner picture 1 banner picture 2 banner picture 3

Information Security Specialist

Commerzbank Aktiengesellschaft

Job Type   /   Job Level
Full-time   /   Others/Any
Job Location
Singapore, Singapore, Singapore
Salary Offered

Job purpose:

This position is part of the Asia information Security and Data Protection function in Singapore with focus on information security and third-party risk management.


Key activities:

  • Assisting the Head of Information Security Asia in implementing and maintaining the Group's information security strategy, policies, and procedures to manage cyber and Third-Party Information Security risk and ensure compliance with relevant laws and regulations.
  • Assessing the security posture of third-party vendors, partners, or service providers to ensure compliance with organizational standards and regulatory requirements.
  • Collaborating with procurement, legal, and business units to evaluate the security implications of engaging with third-party vendors and providing guidance and recommendations to stakeholders on selecting, onboarding, and managing third-party vendors securely.
  • Reviewing and negotiating information security and data protection clauses in contracts and agreements with third-party vendors to establish security requirements and responsibilities.
  • Conducting risk assessments of third-party systems (including cloud), networks, and processes to identify gaps in information security controls.
  • Collaborate with head office in developing and implementing strategies in continue monitoring and evaluating third-party security performance through regular assessments and audits.
  • Participating in cross-functional teams or committees on vendor risk management and security governance driven regionally and globally.
  • Collaborating with auditors to provide necessary documentation, evidence, and support during audit fieldwork, testing, and reporting phases.
  • Reviewing audit findings, recommendations, and reports to identify opportunities for improving information security and third-party risk management practices, processes, and controls.

Formal education:

  • University or college degree or comparable
  • Possession of professional qualifications will be advantageous. e.g. CISA, CISM, CRISC, CISSP, CTPRP

Specialist knowledge (work experience, further qualification):

  • Minimum 5+ years of related experience in Information Security, third-party risk management or technology Risk function in financial services industry or consultancy.
  • Knowledge of Asia regulatory requirements with a strong understanding of the financial industry. PDPC, MAS, NAFR, PBOC, JFA
  • Have a strong security risk and analytical mindset in approaching situations and interactions with stakeholders.
  • Strong communication and interpersonal skills, with an ability to translate complex technical information for a non-technical audience.
✱   This job post has expired   ✱

Sharing is Caring

Know others who would be interested in this job?
© 2024 Jobstore. All rights reserved.