The role reports to Section Head, IT Audit and will be responsible for leading and executing IT audits for the Great Eastern Group of Companies. You will also assist the Singapore Chief Internal Auditor, Group Internal Audit, to provide an independent and objective assurance to support the continuous enhancement of the Group's IT governance, risk and compliance environment. This role partners closely with technology and business stakeholders to deliver high quality audit outcomes and drive a strong risk and control culture.
Audit Planning & Execution
- Lead or participate in the planning, scoping, and execution of IT audit assignments, ensuring high-quality deliverables and timely issuance of audit reports.
- Contribute to the development and refinement of the annual IT audit plan, incorporating emerging risks, regulatory expectations, and business priorities.
- Ensure audit coverage addresses relevant regulatory requirements, industry standards, and internal risk concerns.
- Identify control gaps and provide practical recommendations to strengthen IT governance, control design, and control effectiveness.
Integrated & Thematic Audits
- Partner with business audit teams to support integrated and thematic audit reviews by providing technology expertise.
- Assess the adequacy and effectiveness of IT controls supporting business processes and critical technology environments.
Ad-hoc Reviews & Special Projects
- Lead or participate in special reviews, investigations, and other ad‑hoc assignments as required by management.
- Support continuous monitoring activities to identify technology risk trends, emerging threats, and new areas of audit focus.
Stakeholder Management
- Build and maintain strong working relationships with technology and risk stakeholders, including Technology Risk Management, IT Risk and Compliance teams.
- Act as an advocate for risk awareness and sound control practices, positively influencing stakeholders toward strengthened governance and risk management behaviours.
Issue Tracking & Follow‑Up
- Coordinate with auditees on the timely remediation of audit findings, including issuing Audit Tracking Reports and validating the closure of corrective actions.
Quality & Standards
- Ensure adherence to internal audit methodology, operating procedures, and professional standards.
- Support preparation and compliance with Quality Assurance Reviews.
Continuous Improvement & Thought Leadership
- Stay abreast of emerging technologies, cybersecurity threats, regulatory updates, and industry trends to enhance audit effectiveness.
- Proactively identify potential risks and share best practices in risk management and control design across the organisation.
- Have 8–10 years of relevant IT audit experience, including exposure to infrastructure, application, and cybersecurity audits.
- Hold a Degree in Computer Science or a related field, complemented by professional certifications such as CISA, CISM, CRISC, CISSP, or CCSP.
- Bring prior experience in the insurance or banking sector, with familiarity in technology risk management regulations across Singapore, Malaysia, and Indonesia considered an advantage.
- Demonstrate strong attention to detail to ensure accuracy, completeness, and quality audit coverage.
- Possess leadership qualities with the ability to lead, guide, and motivate a team of auditors.
- Exhibit strong report writing, communication, and presentation skills.
- Work effectively with stakeholders at all levels, displaying collaboration, professionalism, and a team‑oriented mindset.
- Are highly independent, with strong time management skills and the ability to deliver responsibilities with minimal supervision from the IT Audit Section Head.
- Conduct continuous monitoring of technology risk areas and actively engage technology control partners to stay current with the evolving IT risk landscape.
- Demonstrate a high level of integrity, accountability, and a positive attitude toward collaboration and teamwork.
- Show initiative, a continuous improvement mindset, and adaptability in a dynamic environment.
- Are self‑motivated, proactive, and comfortable driving enhancements in processes, risk assessment, and audit practices.
- Are willing to travel overseas when required and deemed safe, with an estimated travel commitment of up to 10%.
How You Succeed
- Champion and embody our Core Values in everyday tasks and interactions.
- Demonstrate high level of integrity and accountability.
- Take initiative to drive improvements and embrace change.
- Take accountability of business and regulatory compliance risks, implementing measures to mitigate them effectively.
- Keep abreast with industry trends, regulatory compliance, and emerging threats and technologies to understand and highlight potential concerns/ risks to safeguard our company proactively.
Who We Are
Founded in 1908, Great Eastern is a well-established market leader and trusted brand in Singapore and Malaysia. With over S$100 billion in assets and more than 16 million policyholders, including 12.5 million from government schemes, it provides insurance solutions to customers through three successful distribution channels – a tied agency force, bancassurance, and financial advisory firm Great Eastern Financial Advisers. The Group also operates in Indonesia and Brunei. The Great Eastern Life Assurance Company Limited and Great Eastern General Insurance Limited have been assigned the financial strength and counterparty credit ratings of AA- by S&P Global Ratings since 2010, one of the highest among Asian life insurance companies. Great Eastern's asset management subsidiary, Lion Global Investors Limited, is one of the leading asset management companies in Southeast Asia. Great Eastern is a subsidiary of OCBC, the longest established Singapore bank, formed in 1932. It is the second largest financial services group in Southeast Asia by assets and one of the world's most highly-rated banks, with an Aa1 rating from Moody's and AA- by both Fitch and S&P. Recognised for its financial strength and stability, OCBC is consistently ranked among the World's Top 50 Safest Banks by Global Finance and has been named Best Managed Bank in Singapore by The Asian Banker.
To All Recruitment Agencies
Great Eastern does not accept unsolicited agency resumes. Please do not forward resumes to our email or our employees. We will not be responsible for any fees related to unsolicited resumes.
Work Locations
SG-GE Centre
