Job Description

My client, an international education firm is looking to hire an IT Risk Manager to be part of their growing IT team in Singapore. The office is situated at Bugis.

You will handle global portfolio - Singapore, US, Cardiff, Switzerland and the Netherlands.

The IT Risk Manager is responsible for the overall management of IT risk within the organization. This includes identifying, evaluating, and mitigating IT risks; ensuring compliance with industry standards, local, national, and global regulations; and leading and conducting IT audits and assurance exercises.

Responsibilities

• Identify and evaluate emerging IT risks with their potential impact.
• Establish and maintain a risk management framework.
• Monitor key risk indicators and recommend corrective action plans to mitigate identified risks and ensure compliance.
• Manage a Governance, Risk and Compliance (GRC) tool to help integrate IT risk and continuous real-time monitoring of IT security risk.
• Lead and conduct the IT Annual Assessment Plan (compliance, risk and maturity) against applications, systems, processes, prospective solutions and existing and potential suppliers.
• Drive regular awareness training and workshops for staff on cyber, information and technology risks.
• Provide guidance and act as a Subject Matter Expert to the project teams in risk, governance and audit of applications or/and systems integrating security in the solutions and throughout the software lifecycle.
• Act as the primary contact for the IT Annual Audit Plan and coordinate with IT Heads and Business Leaders to ensure the audit goes smoothly.

Qualifications

• Degree in IT, Computer Science, Engineering, Information Security or equivalent.
• 3+ years of experience in IT risk management, security governance, audit and risk management tools.
• Experience in leading IT Risk and Compliance assessments.
• Good working knowledge of security risk management and security governance methodologies, industry security standards such as ISO27001/2, CIS Critical Controls, NIST Cybersecurity Framework, risk management tools, technical vulnerability management, security technologies and trends and security operations.
• Good working knowledge of privacy and data protection laws and regulations (GDPR, PCI-DSS).
• Experience in developing and implementing policies, processes and procedures.
• Excellent organizational, problem solving, interpersonal and operating skills.
• Strong communication skills at all levels.
• Good technical competencies and exposure to IT application or infrastructure development, support and management.
• A current, recognized, professional security management certification (e.g., CRISC, CISA, CISM, CISSP) is preferred.

APPLY NOW! Interviews are ongoing! Email to dayna.chiam@stellar-link.com We regret to inform that only shortlisted candidates would be notified. Chiam Lee Ping Dayna Consultant Reg. No: R1764404 Stellar- Link Partners Pte Ltd (EA License: 21S0698)