Enable job alerts via email!

IT Governance (GRC) Manager

NETS

Singapore

On-site

SGD 80,000 - 120,000

Full time

13 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is seeking a seasoned IT Governance and Risk Management professional. This role involves interfacing with various teams to enhance technology risk management capabilities, ensuring compliance with regulatory standards. You will be responsible for identifying emerging risks, managing audits, and providing strategic advisory to stakeholders. If you have a strong background in IT risk management within the financial or payment industry, this is an exciting opportunity to make a significant impact in a dynamic environment.

Qualifications

7+ years of experience in IT Governance or risk management in the financial sector.
Strong knowledge of regulatory requirements and IT Governance practices.

Responsibilities

Interface with risk, audit, and regulatory matters as the single point of contact.
Drive and implement strategic initiatives for technology risk management.

Skills

IT Governance

Risk Management

Regulatory Compliance

Project Management

Problem-Solving

Communication Skills

Education

Relevant Certifications (CGEIT, CISA, CISM, CISSP, CRISC)

Key Responsibilities:

Interface with the second and third lines of defense and will be the single point of contact (working with first line) for all risk, audit and regulatory related matters
Collaborate with second line of defense to implement and drive strategic initiatives to enhance the firm's technology risk management capabilities and awareness, in line with industry best practices and the firm's standards and regulatory requirements
Identify and escalate emerging and upstream technology risks through execution of the Firm’s risk management framework tools, including risk event management, reporting, and action plan tracking
Provide advisory to stakeholders and constituents regarding their IT/security obligations, facilitating acceptable outcomes
Liaise with diverse teams to drive and conduct regulatory and IT compliance self-assessment programmes, risk awareness trainings and so on
Liaise with diverse teams to perform risk and control self-assessment (RCSA) testing, gathering and validating KRIs, dealing with incidents, availability management, etc
Partner and work with internal stakeholders to review, identify, streamline and implement process improvements with regards to IT and cyber risk management
Manage IT related audits, regulatory inspections (including regulatory meeting and request for information)
Review audit findings with key stakeholders to determine action plans and verify remedial solutions for closure
Communicate and provide guidance of new IT related policies, standards to relevant stakeholders
Provide advice on IT and cyber risk management matters as required
Prepare ad-hoc and periodic regulatory and management reports
Ability to innovate, automate and strategies as required

Requirement:

At least 7 years of experience in IT Governance or risk management
Has worked in the financial or payment industry and is familiar with MAS and CCOP regulatory requirements or equivalent
Experience in IT/Cyber operations/governance/audit/regulatory compliance
Strong knowledge of regulatory requirements, IT Governance practices, operations risk management processes and industry trends/practices (e.g. NIST framework, MAS requirements, ISO 27001 standard, PS Act, etc.).
Certifications such as CGEIT, CISA, CISM, CISSP, CRISC or any relevant certification is a plus
Good project management, time management and problem-solving skills
An eye for details, able to work well under pressure and respond to tight deadlines
Team player and able to work independently
Good communication, presentation and business writing skills
Possess a strong control and process management mindset, able to perform deep-dive investigations and crunching for control and process issues