Enable job alerts via email!
IT Security Manager
TOKIO MARINE LIFE INSURANCE SINGAPORE PTE. LTD.
Singapore
On-site
SGD 100,000 - 130,000
Full time
Today
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading insurance company in Singapore seeks a senior IT Security professional to oversee security operations, ensure compliance with regulatory standards, and lead audits. The ideal candidate will have at least 10 years of experience, with a strong background in financial services and expertise in security operations. Key responsibilities include managing vulnerabilities, responding to incidents, and conducting risk assessments. This role requires effective communication and teamwork to align with organizational objectives.
Qualifications
- At least 10 years of relevant experience with 3 years in financial services.
- Strong understanding of MAS regulatory guidelines.
- Knowledge of cloud technologies, preferably Azure.
Responsibilities
- Oversee TMLS IT Security operations for robust security posture.
- Lead audits to ensure compliance and implement corrective actions.
- Identify vulnerabilities and collaborate on remediation strategies.
Skills
IT Security Operations
Incident Management
Risk Assessment
Network Protocols
Communication Skills
Problem Solving
Tools
SIEM Tools
Vulnerability Assessment Tools
Firewalls
DDoS Mitigation Tools
Job description
Job Description
- Essential ITSR team member overseeing TMLS IT Security operations to ensure a robust security posture for TMLS.
- Lead the External and Internal audits to ensure compliance with organizational policies and regulatory standards. Identify areas for improvement and implement corrective actions to enhance overall security and efficiency.
- Identify vulnerabilities and collaborate with cross‑functional teams to develop and implement effective remediation strategies. Ensure continuous improvement of security measures to protect organizational assets.
- Respond to security breaches and incidents, conduct investigations, and implement corrective actions.
- Review and act timely on Incident tickets and SOC alerts, MAS FINTELs and cyber alerts and advisories from CSA, CISA, and other trusted sources, baseline standards and firewall rules, User & Privileged access, Break glass id, OS, and DB Log reviews.
- Conduct periodic IT Risk Assessments, RCSA (Risk Control Self-Assessment), CSA (Continuous Self-Assessment), CSIP (Continuous Self-Improvement Plan), and SCA (Self-Control Assessment).
- Conduct regular meetings with external partners to ensure proper governance and compliance with organizational standards. Collaborate to address any issues and enhance overall security and operational efficiency.
- Conduct comprehensive and regular policy reviews to ensure all policies are up-to-date by evaluating existing policies and identifying areas for improvement and updating them to address emerging risks and enhance security measures.
- Proactively contribute to global initiatives and TMLS‑initiated security projects to foster organizational growth and innovation. Collaborate with cross‑functional teams to ensure successful execution and alignment with strategic objectives.
Job Requirements
- Minimum least 10 years of relevant experience, with a minimum of 3 years in the financial services industry. Background in management consulting, technology, banking or financial services preferred.
- Familiar and hands‑on experience in effecting MAS regulatory guidelines (e.g. MAS TRM Notice & Guidelines, Outsourcing guideline, Business Continuity, etc);
- Strong understanding of network protocols, topologies, firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS).
- Possesses extensive knowledge and experience in managing firewalls, VPNs, endpoint protection, URL filtering, identity access management, privileged access management, web application firewalls (WAF), and DDoS mitigation tools.
- Should possess knowledge of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), API security, and email antimalware solutions.
- Familiar with OS, Virtualization, and cloud technologies (preferably Azure).
- Ability to use SIEM tools to collect, analyze, and correlate security events, Knowledge of EDR tools to detect and respond to threats on endpoints.
- Proficiency in using vulnerability assessment tools to identify and mitigate vulnerabilities. Knowledge of different antivirus and anti‑malware solutions and their deployment.
- Strong experience in managing internal stakeholders, end users, and vendors.
- Effective communication, presentation, and organizational skills are criteria. Strong presentation skill.
- Good teamwork, problem‑solving and analytical skills.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!