Information Technology Security Manager

Job Responsibilities

• Ensuring the timely implementation of the information security roadmap for SG branch and carrying out the remediation activities identified from various risk and technology programs to ensure that HLB stays in compliance with local regulatory guidelines and expectations, as well as with the HO policies.
• Actively engaging in end-to-end IT security and cybersecurity risk remediation planning, resolution, and monitoring activities.
• Undertaking security reviews on the IT estate within Singapore branch and aligning to the group IT security policies and IT Controls Framework
• Evaluating alternative means of reducing the firm’s exposure to cybersecurity loss and coordinating security roadmap initiatives and activities
• Assisting in finding practical and cost-effective solutions to identified or revealed information security gaps and risk issues
• Providing direction and guidance in the development, implementation, and communication of risk related information security policies and standards to employees, colleagues, and/or customers.
• Keeping abreast of the development and advancements in the regulatory guidelines, such as the MAS TRM guideline and CSA Cybersecurity Act, as well as the BNM guidelines.
• Working in relation and conformity with internal and external auditors
• Providing aggregated IT Security and Cybersecurity risk supervision for various high impact areas of IT services for core components of IT risk measurement and reporting activities
• Building and maintaining strong and positive working relationships and effective means of communication with CISO function under Enterprise Risk Management, Operational Risk Management
• Supporting the HO IT risk teams in terms of liaison and reporting to the appropriate HQ IT risk committees
• Build and maintain an external network with other InfoSec and IT Risk professionals, as well as applicable cybersecurity and technology risk forums/bodies

Job Requirements

• Bachelor’s degree in Information Technology or Computer Science or CyberSecurity, or in any related field
• Having certification in CISSP, CRISC, CISM, CISA, CIPM or related disciplines would be an advantage
• Minimum 10 years of IT Security experience in banking or financial institutions
• Staying aware of Information Security current affairs, business continuity, data management, security and encryption, and vulnerability analysis and audit
• Excellent communication skills, both written and verbal to be able to articulate complex IT security
• and cybersecurity risk in simple business terms
• Excellent problem solving and self-management skills in order to tactically and analytically solve technical problems and successfully handling management information and metrics design, collection, analysis, reports, etc.
• Hands-on experience with IT security tools and platforms would be required.
• Only Singaporean or SPR need to apply