Enable job alerts via email!
IT Security Manager
TOKIO MARINE LIFE INSURANCE SINGAPORE PTE. LTD.
Singapore
On-site
SGD 100,000 - 150,000
Full time
Today
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading financial service provider in Singapore is seeking an experienced IT Security professional with at least 10 years in the field, including 3 years in financial services. The role involves overseeing security operations, conducting audits to ensure compliance, and identifying vulnerabilities to enhance security measures. The ideal candidate should have strong knowledge of regulatory guidelines and experience with SIEM and vulnerability assessment tools. Effective communication and stakeholder management skills are essential for this role.
Qualifications
- Minimum of 10 years of relevant experience, with at least 3 years in financial services.
- Experience with MAS regulatory guidelines and compliance.
- Strong understanding of network protocols, firewalls, and IDS/IPS.
Responsibilities
- Oversee TMLS IT Security operations to ensure a robust security posture.
- Lead Internal and External audits for compliance with organizational policies.
- Identify vulnerabilities and develop remediation strategies with cross-functional teams.
Skills
IT Security Operations
Compliance with regulatory standards
Risk Assessment
Incident Management
Vulnerability Management
Stakeholder Management
Communication Skills
Tools
SIEM tools
Vulnerability Assessment Tools
EDR Tools
Job description
Job Description
- Essential ITSR team member overseeing TMLS IT Security operations to ensure a robust security posture for TMLS.
- Lead the External and Internal audits to ensure compliance with organizational policies and regulatory standards. Identify areas for improvement and implement corrective actions to enhance overall security and efficiency.
- Identify vulnerabilities and collaborate with cross‑functional teams to develop and implement effective remediation strategies. Ensure continuous improvement of security measures to protect organizational assets.
- Respond to security breaches and incidents, conduct investigations, and implement corrective actions.
- Review and act timely on Incident tickets and SOC alerts, MAS FINTELs and cyber alerts and advisories from CSA, CISA, and other trusted sources, baseline standards and firewall rules, User & Privileged access, Break glass id, OS, and DB Log reviews.
- Conduct periodic IT Risk Assessments, RCSA (Risk Control Self-Assessment), CSA (Continuous Self-Assessment), CSIP (Continuous Self-Improvement Plan), and SCA (Self-Control Assessment).
- Conduct regular meetings with external partners to ensure proper governance and compliance with organizational standards. Collaborate to address any issues and enhance overall security and operational efficiency.
- Conduct comprehensive and regular policy reviews to ensure all policies are up-to-date by evaluating existing policies and identifying areas for improvement and updating them to address emerging risks and enhance security measures.
- Proactively contribute to global initiatives and TMLS‑initiated security projects to foster organizational growth and innovation. Collaborate with cross‑functional teams to ensure successful execution and alignment with strategic objectives.
Job Requirements
- Minimum least 10 years of relevant experience, with a minimum of 3 years in the financial services industry. Background in management consulting, technology, banking or financial services preferred.
- Familiar and hands‑on experience in effecting MAS regulatory guidelines (e.g. MAS TRM Notice & Guidelines, Outsourcing guideline, Business Continuity, etc);
- Strong understanding of network protocols, topologies, firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS).
- Possesses extensive knowledge and experience in managing firewalls, VPNs, endpoint protection, URL filtering, identity access management, privileged access management, web application firewalls (WAF), and DDoS mitigation tools.
- Should possess knowledge of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), API security, and email antimalware solutions.
- Familiar with OS, Virtualization, and cloud technologies (preferably Azure).
- Ability to use SIEM tools to collect, analyze, and correlate security events, Knowledge of EDR tools to detect and respond to threats on endpoints.
- Proficiency in using vulnerability assessment tools to identify and mitigate vulnerabilities. Knowledge of different antivirus and anti‑malware solutions and their deployment.
- Strong experience in managing internal stakeholders, end users, and vendors.
- Effective communication, presentation, and organizational skills are criteria. Strong presentation skill.
- Good teamwork, problem‑solving and analytical skills.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!