Cyber Security Assessment

As Singapore’s longest established bank, we have been dedicated to enabling individuals and businesses to achieve their aspirations since 1932. How? By taking the time to truly understand people. From there, we provide support, services, solutions, and career paths that meet their individual needs and desires.

Today, we’re on a journey of transformation. Leveraging technology and creativity to become a future‑ready learning organisation. But for all that change, our strategic ambition is consistently clear and bold, which is to be Asia’s leading financial services partner for a sustainable future.

We invite you to build the bank of the future. Innovate the way we deliver financial services. Work in friendly, supportive teams. Build lasting value in your community. Help people grow their assets, business, and investments. Take your learning as far as you can. Or simply enjoy a vibrant, future‑ready career.

Your Opportunity Starts Here.

Protecting our customers’ sensitive information is a top priority at OCBC. As an Information Security Specialist, you’ll play a critical role in safeguarding our systems and data. You’ll work with a team of experts to stay ahead of emerging threats and ensure the bank’s security posture is always robust.

To succeed in this role, you’ll need to stay up to date with the latest security threats and trends. You’ll work closely with various stakeholders to identify and mitigate risks and implement effective security measures to protect our systems and data. Your analytical skills and attention to detail will be essential in detecting and responding to security incidents.

• Third‑party cyber security assessment
• Perform assessment of third‑party service providers’ cybersecurity posture and identify potential security risks from third‑party engagements, in accordance with the requirements in the due diligence checklist
• Provide support and advise to Service Owners and collaborate with TPRM team to ensure security risks are identified and communicated so that business can make an informed decision
• Perform security assessment of products seeking outside of the purview of Bank’s established system change process / TPRM processes and identify potential security risks arising from the new product offerings
• Project and Application cyber security assessment
• Provide subject matter expertise to business and service owners for project and application / infrastructure related matters.
• Serves as subject matter experts on the Bank’s Technology Security Standard (TSS) and provide guidance and clarification to questions or clarifications related to TSS.
• Stay up to date with latest developments and changes in the TSS and communicate them effectively to requestors
• Involve in project engagement and provide guidance to ITPM throughout the project, offering guidance and clarification on TSS as necessary, leading to the review of ACRA and TSSAC
• Involve in Request for Proposal (RFP) process for cyber defence related matters.
• Review the submitted ACRA, ITSR and SAR (MY and SG). Complete assessment and provide approval.
• Review Technology Security Self‑Assessment Checklist (TSSAC) and provide approval prior to go‑live phase.
• Risk and Business Continuity Coordinator
• Plan and manage MY TISO Business Continuity Management (BCM) activities and submissions in line with ORM’s requirements.
• TISO R&P risk coordinator in the areas of communication of messages, data collection, surveys and other relevant action as directed by R&P & ensure timely submission for all requested items.
• Perform half‑yearly ESPV attestation (half‑yearly) and perform monthly clear‑desk attestation (monthly).

• Degree in Computer Science or equivalent.
• Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM) or equivalent.
• Minimum 3-5 years for MGR level and 5-8 years for AVP level of working experience in related IT security functions.

Competitive base salary. A suite of holistic, flexible benefits to suit every lifestyle. Community initiatives. Industry‑leading learning and professional development opportunities. Equal opportunity. Fair employment. Selection based on ability and fit with our culture and values. Your wellbeing, growth and aspirations are every bit as cared for as the needs of our customers.