Assistant Vice President, Regional Technology Risk Manager
Singapore
Sumitomo Mitsui Banking Corporation
三井住友銀行のホームページです。口座開設、住宅ローン、外貨預金、投資信託等の各種商品・サービスについて掲載しています。インターネットバンキングでは、残高照会や振込、外貨預金や投資信託のお取り引きの他、便利なWeb通帳もご利用いただけます。
The Role
As a member of the Technology Risk Team, you will be collaborating with various stakeholders within SMBC Technology teams, regional branches, Risk Department or Legal/Compliance to manage technology related risks as well as participating in IT Governance, Risk and Compliance (GRC) activities within the region.
Job Responsibilities
- Oversee IT GRC activities within APAC branches such as collating risk reports, supporting branches audits, reviewing Risk acceptance requests.
- Manage or support regulatory compliance effort within the region, e.g., MAS Cyber Hygiene or RMiT gap analysis, follow up on questionnaires and Circulars etc.
- Function as a consultant/advisor on risk & control or regulatory matters to technology units, as well as working with them to resolve technology risk issues.
- Coordinate and facilitate the control self-assessment activities, including conducting independent control testing where necessary or reviewing appropriateness of control descriptions.
- Offer effective 1LOD challenge to technology units on risk remediation priorities and provide risk opinion, advisories & recommendations to IT management and 2LOD.
- Support 2LOD in risk governance activities, e.g., establish KRIs and Technology Management Framework as well as monitoring/reporting of KRIs.
- Maintain and upkeep IT policies and processes owned by the team.
Job Requirements
- Master’s or bachelor’s degree in a technical discipline preferably in Computer Science/Engineering or equivalent.
- Min. 5 years of working experience with min. 3 years in risk & control or audit function in the financial industry.
- Ability to identify risks and assess adequacy of controls as well as recommending suitable control enhancements.
- Good appreciation of cyber risk management strategies/controls in the industry
- Excellent communication, presentation, and interpersonal skills and able to manage stakeholders across multiple disciplines.
- Prior experience in delivering security awareness training within the organization.
- Strong critical thinker with the vision to work both tactically and strategically.
- Candidates with CISSP or CISM certification is preferred.
- Experienced candidate would be considered for a senior role.
- Work location: One@ChangiCity
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits CISM CISSP Compliance Computer Science Governance Monitoring Risk management
Region:
Asia/Pacific
Country:
Singapore
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsPenetration Tester jobsSenior Cybersecurity Engineer jobsSenior Cyber Security Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Network Security Engineer jobsInformation System Security Officer jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobsSenior Information Security Engineer jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsTerraform jobsDoDD 8570 jobsFinance jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsIntrusion detection jobsCompTIA jobsDocker jobs
TCP/IP jobsBanking jobsThreat detection jobsActive Directory jobsSANS jobsData Analytics jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsVPN jobsCyber defense jobsAnsible jobsSOC 2 jobsIT infrastructure jobsJavaScript jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsNIST 800-53 jobsOracle jobsCryptography jobs