Be part of the banks second-line of defence, ensuring a sound and robust IT risk and security function
Support the team lead in developing technology and cyber risk management policies and frameworks, ensuring compliance with regulations and industry best practices
Carry out continuous testing of IT controls, evaluating the adequacy and effectiveness of IT controls relating to technology and cyber risks within functional areas
Oversee critical cybersecurity operations and identify areas for improvement, e.g., security architecture, security hardening, data loss prevention, vulnerability assessment, secure SDLC and SOC.
Work closely with the first-line Technology Department to mitigate gaps and foster a strong risk culture within the business
Conduct ad-hoc risk assessments and threat modelings
Participate in cybersecurity incident response
Support IT security awareness trainings and conduct phishing campaigns
Support customer education on IT security advisories
Requirements
Bachelors degree or above in information security, computer science, technology, or related disciplines
1-3 years relevant experience, prior working experience in the banking sector is a plus
Bilingual in English and Mandarin to facilitate cross border collaborations and discussions with stakeholders across the region / stakeholders from ShenZhen
Knowledge of regulatory requirements and industry practices (e.g., MAS TRM Guidelines, MAS Cyber Hygiene Notice, ISO27001, etc.)
Relevant professional qualifications and certificates (e.g., CISA, CISSP, CISM) will be an advantage
