Job Description

Business Function

Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank\'s operational processes and inspire to delight our business partners through our multiple banking delivery channels.

Responsibilities

• Collaborate with various T&O technology teams in the maintenance of effective internal controls
• Liaise with the Group Audit, Group Legal and Compliance and T&O ORM teams on a regular basis
• Support team lead to manage internal/external audit engagements
• Raise issues/concerns, and provide constructive advice to the management so that significant IT risk and control issues are escalated and resolved properly
• Execute risk assessments and perform controls testing to ensure their effectiveness
• Track process improvements and issues corrective actions to ensure timely closure
• Work closely with stakeholders and security teams to mitigate/resolve reported security vulnerabilities
• Provide support and review on the privilege ID usage and conduct review to ensure adherence to access controls standards, including investigate on reported exceptions
• Perform data analysis or procedure reviews to ensure compliance to the bank security standards
• Work with internal stakeholders and vendor to review and streamline the work processes of the bank and vendor

Requirements

• Familiar with Applications Delivery Life Cycle, Project Management best practices and IT Controls across different operating system and platforms with hands on experience on Public Cloud controls is an added advantage.
• Good understanding of security issues, operational risks and process improvement in the areas of technology and business
• Experience with secure coding and knowledge of OWASP will be preferred
• Good wide knowledge of security domains including encryption and authentication methods, vulnerability assessment, penetration testing and security patch management.
• Knowledge of the Banking Act - Banking Secrecy, Bank\'s policy and guidelines, Information Security Policy, Anti-Money Laundering, Cyber Security Act, MAS Technology Risk Management Guidelines, MAS Outsourcing Guidelines etc.
• Have a strong control and process management mindset, constantly paying attention to details and have ability to perform deep-dive investigation and crunching for control and process issues
• Proactive team player with ability to work independently with minimal supervision and equips with excellent communication (both spoken and written), presentation and business writing skills
• Able to collaborate within a team, at various levels of stakeholders from the operating level to the senior management across locations
• Flexibility and ability to multi-task and take on different types of roles and activities at the same time in a fast-paced environment. Able to effectively manage time and prioritize tasks and responsibilities
• Positive and problem-solving attitude and willing to take new challenges with an open-mind
• Creative, quick & systemic thinking with strong analytical and planning skill
• Experience in IT audit or CISA/CISM certified preferred or operational risk management and control self-assessment or prior experience in implementing security solution and information security governance

Apply Now

We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.

eFinancialCareers