Be part of the bank's second-line of defence, ensuring a sound and robust IT risk and security function
Support the team lead in developing technology and cyber risk management policies and frameworks, ensuring compliance with regulations and industry best practices
Conduct continuous testing of IT controls, evaluating the adequacy and effectiveness of IT controls relating to technology and cyber risks within functional areas
Oversee critical cybersecurity operations and identify areas for improvement, e.g., security architecture, security hardening, data loss prevention, vulnerability assessment, secure SDLC and SOC
Oversee and provide independent review and challenge to the Technology function on IT security risks, controls effectiveness and remediation plans
Conduct AI risk assessment to ensuring compliance with regulations and industry best practices
Perform gap assessment on latest MAS regulatory requirements such as Notices, Guidelines, Circulars, FINTELs etc to ensure compliance
Participate as part of an incident response team on cyber security incident handling, impact assessment and remediation measures
Support IT security awareness trainings and conduct phishing campaigns
Support customer education on IT security advisories
Requirements
Bachelor's degree or above in information security, computer science, technology, or related disciplines
Preferably relevant working experience of at least 3 years prior working experience in the banking sector
Possess strong oral and written communication skills and capable of engaging senior stakeholders
Ability to facilitate cross border collaborations and discussions with stakeholders across the region
Clear analytical thought process and good understanding of emerging technology developments and risk management frameworks
Knowledge of regulatory requirements and industry practices (e.g., MAS TRM Guidelines, MAS Cyber Hygiene Notice, ISO27001, etc.)
Relevant professional qualifications and certificates (e.g., CISA, CISSP, CISM) will be an advantage
