Senior Analyst, Information Security

At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.

As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.

To get there, we need people with tech/digital/analytics expertise and passion to help develop positive, sustainable change through digitally enhanced experiences that will impact the lives of millions of people and create a healthier future for everyone.

If you believe in developing a better tomorrow, read on. 

About the Role

IT Security and Governance is responsible for support and help manage the information security function, which includes application , infrastructure security, risk and controls (in collaboration with local and group technology risk), IT security governance, security management and IT regulatory.
He/She is also responsible to monitor and check to ensure the staff have carried out their daily routine and Key performance indicators (KPIs) are delivered with quality timely.
Partnering with the Lead for Business Applications and end user’s community, this position will support the Technology teams with overall responsibility for the operation of IT hub room, IT Applications, compliance of IT technology security governance and risk, as well as for the end users environment.

• Help to Implement group wide solution to address information security issues with focus on identification of common patterns and issues
• Maintain and review technology policies, standards, processes and remediation management to continuously improve information security governance.
• Execution of self-assessment program to ensure technology is in compliance with the established information security policies, standards and processes.
• Support the implementation of new generation information security architecture.
• Manage daily incident management to ensure timeliness of resolution in place.
• Ensure significant business initiatives are reviewed and aligned with the information security policies, standards and processes.
• Regulatory interface on information security related aspects.
• Interface with auditors to ensure all audit and compliance findings are adequately remediated across the business unit.
• Provide value added services and become a business partner and growth enabler to the business by providing advisory and support to business leaders.
• Ensure information security principles have the right balance of data protection and ease of doing business.
• Help build and nurture a local business unit information security team.
• Participate in the group technology risk forum to ensure business unit perspective is adequately factored in while building group information security strategy.
• Staff training through exercises such as phishing and also development of country specific training content in addition to the existing group wide information security content
• Monitor end user devices, tablets, computers, servers and networks for security issues.
• Fix all detected vulnerabilities and compliance to maintain a high-security standard as per corporate guideline.
• Investigate and fix all detected security breaches and other cyber security incidents.
• Develop, maintain, implement and enforce unique and effective security strategies for application systems, networks, data centers, and hardware.
• Develop, maintain, implement and enforce technical security architecture according enterprise architecture requirement.
• Guide, review and evaluate vendors and partners in the security area
• To support and to troubleshoot issues and ensure daily incidences are resolved within the agreed standard.
• To raise and escalate all incidences and issues timely for resolution.
• To carry out duties outside the defined scope as and when required.
• Work closely with any of the team member and to back up each other at any time to ensure no daily activities and tasks are being carried out without any delay.
• Be a team player to share knowledge and help develop staff competencies.

Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.

You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.