Engineering, IT Governance - Regulatory and Controls, Analyst / Associate, Singapore

Job Summary:

We are looking for a Technology Talent with advanced communication, analysis, project management skills and experience with IT governance and internal controls. The role requires a solid understanding of the regulatory environment for financial institutions in Singapore and/or European Union. If you come with background in regulatory environments in Asia Pacific jurisdictions, and the financial services sector, that will be a huge plus.

You will be joining the newly to be established Branch of GSBE in Singapore, working closely with our Frankfurt based GSBE Engineering COO team, Third Party Risk Management as well as our Singapore based Engineering teams. As part of the role, you will be a key person to establish and manage Technology governance structures over various aspects of the firm’s information security and cyber security program as well as managing and overseeing related outsourcing relationships, to ensure compliance with local regulatory obligations. You will be reporting to GSBE’s CIO in Frankfurt as well as the local and regional governance and management.

Roles and Responsibilities:

• Adapt and enhance GSBE’s Governance Framework for the Branch, including implementation of additional local regulatory requirements
• Manage and oversee Engineering services received under ICT Service Contracts in collaboration with GSBE’s head office and the Branch’s Third Party Risk Management function
• Develop, improve and automate regulatory reporting to support the Branch, including respective Key Performance and Key Risk Indicators (KPIs and KRIs), steering-co reporting, regulatory reporting, IT committee reporting, etc.
• Support regulatory assessments, interactions and submissions, as well as internal and external audit requests
• Closely collaborate with other functions across Engineering, as well as the 2nd and 3rd lines of defense
• Ensure continuous alignment with applicable regulations, firmwide policies and standards

Qualifications:

• Bachelor's or Master's degree in Computer Science, Information Security, Engineering, or a related field
• 1+ year (Analyst) to 5+ years (Associate) of experience in one or more of the following areas: IT Governance, Technology Risk Management, Information Security, IT Compliance, IT Control management, IT Outsourcing and/or Technology Audit 
• Knowledge of the regulatory environment in the financial sector, as it relates to technology control and/or third party risk management for technology service providers (e.g. DORA, MAS and EBA guidelines on ICT and Technology Risk Management and Outsourcing)
• Professional certifications such as CISSP, CISM, CISA or similar are a plus
• Understanding of technology risks, security controls, and industry standards (e.g. NIST, ISO27001)
• Good communication, interpersonal, and presentation skills
• Strong analytical and problem-solving abilities
• Ability to work independently and as part of a team

© The Goldman Sachs Group, Inc., 2024. All rights reserved.
Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.