Promote the value and importance of effective IT Governance and assurance on all IT systems which serve SG Branch
Lead the implementation of IT Governance and assurance framework strategy throughout SG Branch IT, where required.
Provide guidance to IT staff on regulatory requirements and technology compliance
Provide training and briefing to bank staff on IT governance policies and processes, and technology regulatory requirements, where required.
Work with IT teams to ensure ensure compliance to policies, procedures and controls, and actively managed non-compliances to a satisfactory level.
Enable operational efficiency of technology controls through oversight and alignment of standard operating procedures (SOP) according to established framework, policies and standards.
Maintain registers on IT SOPs, risks, audit findings, non-compliances and formulate IT Risk management reports
Develops / maintains Technology governance SOPs as needed
Tracking of risk-related issues and gaps through the bank's Self-Assessment Risk Review system
Provide support and guidance to IT staff in Control Issue Management, Risk Control Self-Assessment, Compliance Self Testing Matrix, Key Risk Indicators, and Loss Events.
Assist to manage technology aspects of both internal/external audits; liaison with regulators on technology compliance matters.
Assist business units on related legislation, regulatory and standards affecting the IT outsourcing Governance of the Bank
Work with stakeholders to assist in the development and implementation of IT Outsourcing compliance controls
Validating Data Leakage Prevention samples
To provide necessary support to Head IT Governance relating to ITD Management meetings.
POC for internal and external audits
To follow up on audit issues for proper implementation
Requirements:
Bachelor's degree in computer science or its equivalent
Minimum 7 years working experience in Technology Governance
Relevant qualifications in MAS Technology Risk Management Guidelines, Business Continuity Management Guidelines, Outsourcing Guidelines & associated notices (644, 655, etc), Personal Data Protection Act (2020) & Guidelines, and Cloud Governance (Based on AWS Best practices Pillars and NIST).
