Regional Cybersecurity & Technology Risk Manager

We are seeking an experienced and strategic leader to join our team as Regional Cybersecurity and Technology Risk Manager. This role is responsible for overseeing the development, implementation, and continuous improvement of the Technology Risk Management framework across the region. The successful candidate will drive risk management initiatives, ensure regulatory compliance, and provide expert guidance to both business and IT stakeholders. This position will be reporting to the Regional Head of IT Governance, Risk and Compliance (GRC) within the Regional Information Technology Division.

• Lead the development, maintenance, and enhancement of the Technology Risk Management Framework for the region.
• Manage the risk register and establish comprehensive analytical frameworks for assessing and reporting on the organization’s risk profile.
• Design, compile, and present risk management metrics and reports to senior business and IT management.
• Direct and conduct risk assessments of internal processes and key third-party vendors, identifying, reporting, and recommending controls to mitigate risks.
• Advise on the policies, procedures, and the design and execution of controls related to cybersecurity, risk and compliance initiatives.
• Develop, review, and update Cybersecurity and Technology risk policies and procedures.
• Act as the primary liaison for IT audit activities, coordinating between internal IT teams and external/internal auditors.
• Stay abreast of technological advancements and regulatory changes, recommending improvements to enhance GRC operations’ effectiveness and efficiency.
• Champion a positive GRC culture throughout the organization, providing training and awareness programs as needed.
• Perform other duties as assigned by the supervisor.

• Minimum 8 years of relevant experience in technology risk management, governance, and compliance, preferably within the financial services or professional services sector.
• Demonstrated expertise in industry standards (COBIT, NIST, ITIL, ISO27001), policy formulation, and independent technology risk assessment.
• In-depth knowledge of IT environments, technology and cyber-related controls, with hands-on experience in information security and data governance.
• Strong understanding of the financial regulatory environment in Asia, especially SFC in Hong Kong and MAS in Singapore.
• Knowledge of China, Taiwan, Korea, Australia, Thailand, and / or Japan regulatory environment is desired.
• Proven leadership skills, with the ability to influence, build consensus, and communicate effectively with both technical and non-technical audiences.
• University degree in risk management, information security, computer science, or related fields.
• Professional certifications such as CISA, CISSP, CRISC, or equivalent are required.

Interested candidate please click on the following link to begin your job search journey and submit your CV directly through the official PERSOL job application platform - GO Mobile.

We regret to inform that only shortlisted candidates will be notified.

By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persolkelly.com.sg. You acknowledge that you have read, understood, and agree with the Privacy Policy.

PERSOL SINGAPORE PTE LTD • RCB No. 200007268E • EA License No. 01C4394 • Reg. R24124630, EMILY YEO CHU YU