Job Summary
You will be working with our client in the financial industry. As a Governance Risk and Compliance Cybersecurity Specialist, you will be involved in developing and maintaining a robust culture of technology and cybersecurity risk governance. This role offers an opportunity to make a significant impact on the ICT risk management and governance
practices. You will also work with cross-functional teams for maintaining the highest standards of cybersecurity and ICT compliance.
Responsibilities
- Develop the culture of IT risk governance and management across the organisation, and ensure proper accountability in the management, tracking and reporting of tech and cyber risks.
- Provide subject matter advice to internal stakeholders on cyber security requirements that the organisation is required to comply with, including internal policies and standards.
- Review and establish ICT policies and process controls and conduct compliance checks.
- Support team lead and work with internal stakeholders
- Track and monitor tech projects and initiatives to meet compliance requirements.
- Track and monitor of Key Risk Indicators and Control Self-Assessment as part of the IT governance framework.
- Track and monitor incident reporting, including reviewing, monitoring, and reporting on the corrective measures and improvement areas.
- Participate in consultation and conduct gap analysis against new or revised requirements.
- Assess and seek waiver approvals for deviations and risk treatment strategies.
- Organise risk forums, including monitoring of action plans.
- Coordinate and facilitate IT / cyber security audits.
- Track remediation plans to address audit findings.
- Follow up on remediation actions, security and risk assessments with respective stakeholders and project and application managers.
- Recommend the re-engineering and streaming of processes to enhance effectiveness of controls implemented.
- Present management reporting to stakeholders, with analysis of data and trends, and recommend next steps.
- Enhance training and other materials in ICT risk management, document case studies and good practices.
Requirements
- Bachelor's Degree in Cybersecurity, Information Technology or equivalent
- At least 5 years relevant experience in ICT cybersecurity, data security, audit management, governance, risk and compliance management
- Relevant certifications in IT governance, IT audit, cyber or data security (e.g. CISSP, CISM, CISA, etc.) preferred.
- Ability to work with cross-functional, multi-disciplined team to operationalise monitor security policies and procedures.
- Knowledge of Instruction Manual 8 and CSA Cybersecurity Code of Practice preferred.
- Technical knowledge of security vulnerabilities, validation of remediations and risk assessments.
- Relevant experience in data visualisation and analytics.
- Strong analytical, reasoning and problem-solving skills.
- Meticulous with an eye for detail.
- Good oral and written communication skills
- Ability to work independently and assume responsibility for project deliverables.
- Team player who is proactive and collaborative
- Experience in reporting and dashboard using JIRA is preferred.
If you are interested in this role and would like to discuss the opportunity further please click apply now or email Chew Kai-Xinn at [email protected] for more information.
Only shortlisted candidates will be responded to, therefore if you do not receive a reply within 14 days please accept this as notification that you have not been shortlisted.
Morgan McKinley Talent Solutions
Morgan McKinley Pte Ltd EA Licence No: 11C5502
EAP Registration No: R2196712
EAP Name: Chew Kai-Xinn