Enable job alerts via email!

Senior IT Governance Specialist/Manager

-

Singapore

On-site

SGD 80,000 - 100,000

Full time

18 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is seeking an IT Governance Specialist to oversee and enhance IT and cyber risk management frameworks. This role involves collaborating with various teams to ensure compliance with regulatory standards and implementing strategic initiatives. With a focus on risk management, the specialist will provide advisory services, manage audits, and prepare regulatory reports. The ideal candidate will have extensive experience in IT governance, particularly within the financial sector, and a strong understanding of regulatory requirements. Join a dynamic environment where your expertise will contribute to the organization's success in navigating complex IT risks.

Qualifications

  • 7+ years of experience in IT Governance or risk management.
  • Familiar with MAS and CCOP regulatory requirements.

Responsibilities

  • Interface with defense lines for risk, audit, and regulatory matters.
  • Drive strategic initiatives to enhance technology risk management.

Skills

IT Governance
Risk Management
Regulatory Compliance
Project Management
Problem-Solving
Communication Skills
Attention to Detail

Education

Bachelor's Degree in IT or related field
Certifications (CGEIT, CISA, CISM, CISSP, CRISC)

Tools

NIST Framework
ISO 27001

Job description

Position Summary

The IT Governance Specialist, as a 1.5 line of defense, is responsible for defining, formulating, governing, reporting and controlling of the IT and cyber risk (Information Security) related frameworks, policies, processes and procedures for the organisation. The incumbent plays a control function and works closely with the first, second and third lines of defense. The incumbent will be an intermediary, advisor and domain expert to the business stakeholders on IT and cyber security matters.

Key Responsibilities
  1. Interface with the second and third lines of defense and will be the single point of contact (working with first line) for all risk, audit and regulatory related matters
  2. Collaborate with second line of defense to implement and drive strategic initiatives to enhance the firm's technology risk management capabilities and awareness, in line with industry best practices and the firm's standards and regulatory requirements
  3. Identify and escalate emerging and upstream technology risks through execution of the Firm's risk management framework tools, including risk event management, reporting, and action plan tracking
  4. Provide advisory to stakeholders and constituents regarding their IT/security obligations, facilitating acceptable outcomes
  5. Liaise with diverse teams to drive and conduct regulatory and IT compliance self-assessment programmes, risk awareness trainings and so on
  6. Liaise with diverse teams to perform risk and control self-assessment (RCSA) testing, gathering and validating KRIs, dealing with incidents, availability management, etc
  7. Partner and work with internal stakeholders to review, identify, streamline and implement process improvements with regards to IT and cyber risk management
  8. Manage IT related audits, regulatory inspections (including regulatory meeting and request for information)
  9. Review audit findings with key stakeholders to determine action plans and verify remedial solutions for closure
  10. Communicate and provide guidance of new IT related policies, standards to relevant stakeholders
  11. Provide advice on IT and cyber risk management matters as required
  12. Prepare ad-hoc and periodic regulatory and management reports
  13. Ability to innovate, automate and strategize as required

Requirement
  1. At least 7 years of experience in IT Governance or risk management
  2. Has worked in the financial or payment industry and is familiar with MAS and CCOP regulatory requirements or equivalent
  3. Experience in IT/Cyber operations/governance/audit/regulatory compliance
  4. Strong knowledge of regulatory requirements, IT Governance practices, operations risk management processes and industry trends/practices (e.g. NIST framework, MAS requirements, ISO 27001 standard, PS Act, etc.).
  5. Certifications such as CGEIT, CISA, CISM, CISSP, CRISC or any relevant certification is a plus
  6. Good project management, time management and problem-solving skills
  7. An eye for details, able to work well under pressure and respond to tight deadlines
  8. Team player and able to work independently
  9. Good communication, presentation and business writing skills
  10. Possess a strong control and process management mindset, able to perform deep-dive investigations and crunching for control and process issues
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotStars
Rated “Excellent” based on 14,992 reviews
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved