Technology Controls, Specialist

At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.

As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.

To get there, we need people with tech/digital/analytics expertise and passion to help develop positive, sustainable change through digitally enhanced experiences that will impact the lives of millions of people and create a healthier future for everyone.

If you believe in developing a better tomorrow, read on. 

About the Role

The incumbent is responsible for developing, evaluating, maintaining, monitoring and continuous testing of technology (inclusive of information security) controls across the organization.

This role will also support on internal/external audit which requires close collaboration with internal and external auditors, as well as stakeholders across departments, to ensure compliance, identify weaknesses in Technology and Cyber related controls, and implement corrective actions. The incumbent is expected to contribute to periodic self-assessments of controls to verify the efficiency and alignment with internal standards and regulatory requirements.

WHAT YOU WILL DO

• Build and facilitate effective continuous controls monitoring of the Technology Controls Library, performing controls testing on defined Technology and Cyber related controls against internal standards, industry best-practice and regulatory requirements.

• Maintain and identify improvements to the Technology Controls Library.

• Identify opportunities for automation/dashboarding of controls testing to reduce manual testing load.

• Facilitate training and awareness sessions to build awareness amongst Control Performer(s)/Owner(s) on the need for evidence-based attestation on controls effectiveness.

• Acts as the SME on the controls attestation related queries by Control Performer(s)/Control Owner(s) as required.

• Produce artefacts for management reporting on continuous controls monitoring initiative as required.

WHAT YOU SHOULD HAVE

• Bachelor’s degree in computer science, information security, or a related field.

• Relevant certifications such as CISA, CISSP, CRISC, CISM, or equivalent qualifications are highly desirable.

• Min 4 to 5 years of relevant work experience, including IT audit, risk management, and security governance within large financial institution, insurance, or auditing firms.

• Familiarity with relevant regulatory requirements and industry best practices.

• Familiarity with the risks and compliance challenges posed by emerging technologies (such as AI and blockchain) would be a plus.

• A team-player with systematic problem-solving approach and have sense of ownership and drive.

• Must have good people skill to work in a team effectively and demonstrable experience of working with various level stakeholders of large and complex organizations.

• Excellent interpersonal and stakeholders management skills.

• Always have customer in mind when dealing with any situations/projects/deliverables.

• Able to negotiate with, influence and engage others in complex and conflicting situations across multiple parties to drive a positive outcome.

• Good communication skills and the communication network of the incumbent is expected to be internally within the enterprise (80%) and external with Vendors and Service Providers (20%).

Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.

You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.