Apply on
Original
Simplified
Description
This role needs to examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
Key Responsibilities
Requirements:
Singapore
Job
Information Technology
Organization
Technology Information Security Office (TISO)
Schedule
Permanent
Full-time
Job Posting
03-Sep-2024, 3:40:01 PM
This role needs to examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
Key Responsibilities
- Develop methods to monitor and measure risk, compliance, and assurance efforts.
- Perform thematic Review or conduct audits of information systems:
- In compliance with policies, standards, guidelines, procedures, etc to identify gaps;
- Assess the effectiveness of security controls;
- Provide recommendations for possible improvements and upgrades; and
- Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations.
- Ensure that security design and cybersecurity development activities are properly documented and updated as necessary.
- Manage plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
- Review/Assess cyber workforce effectiveness to adjust skill and/or qualification standards.
- Review and facilitate information systems assurance and accreditation materials.
- Review service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up.
- Facilitate internal and external audits, as well as regulatory examinations/inspections as a Person-In-Charge (PIC) for the department.
Requirements:
- Bachelor's degree in computer science, information technology, cybersecurity, or a related field. Master's degree preferred. Advanced degree or industry certifications (e.g., CISSP, CISA, etc) are preferred.
- Proven experience (at least 5 years) in Information Security, IT Audit or Governance, Risk & Compliance related roles, preferably in the banking or financial services industry.
- Able to perform tasks with minimal supervision and drive initiatives to completion.
- Knowledge of cyber solutions, including intrusion detection/prevention systems, cloud security, application security, endpoint security, web security, and security monitoring tools.
- Knowledge in compliance with MAS TRM, ABS, BNM, HKMA, CBRC, etc.
- Experience in developing and implementing security policies, standards, and procedures.
- Strong communication and interpersonal skills.
- Ability to work effectively in a fast-paced environment and handle multiple priorities simultaneously.
Singapore
Job
Information Technology
Organization
Technology Information Security Office (TISO)
Schedule
Permanent
Full-time
Job Posting
03-Sep-2024, 3:40:01 PM
Similar Jobs