SVP, Head of Non-Human Identity Policy, Governance & Operations, Group Technolog

DBS is a leading financial services group in Asia, with over 280 branches across 18 markets. Headquartered and listed in Singapore, DBS has a growing presence in the three key Asian axes of growth: Greater China, Southeast Asia and South Asia. The bank's capital position, as well as "AA-" and "Aa1" credit ratings, is among the highest in Asia-Pacific. DBS has been recognised for its leadership in the region, having been named “Asia’s Best Bank” by The Banker, a member of the Financial Times group, and “Best Bank in Asia-Pacific” by Global Finance. The bank has also been named “Safest Bank in Asia” by Global Finance for seven consecutive years from 2009 to 2015.

Business Function

Group Technology empowers the bank with an efficient, nimble and resilient infrastructure and system through a strategic focus on productivity, quality & control, technology, coupled with strengthening people capability and banking on innovation. In Group Technology, we manage the majority of the Bank's operational processes and inspire to delight our business partners and customers through our multiple banking delivery channels.

We are seeking an experienced and visionary Head of Identity & Access Management (IAM) to lead the strategic design, implementation, and management of our bank-wide non-human identity policy, governance, and operations. This critical leadership role will be responsible for ensuring the security, resiliency, and compliance of all non-human identities (e.g., applications, services, APIs, machine accounts) across the organization.

The ideal candidate will possess deep expertise in security and resiliency engineering and operations, a proven track record in IAM architecture, and exceptional interpersonal skills to effectively engage with senior leaders, peers, and a high-performing security team.

Key Responsibilities

Strategic Leadership & Governance

• Own and drive the bank’s non-human identity strategy, policy, and governance framework
• Develop and enforce standards, procedures, and controls for non-human identity lifecycle management
• Ensure compliance with regulatory requirements, internal policies, and industry best practices
• Serve as the primary point of contact and subject matter expert for non-human identity management

Architecture & Engineering

• Architect, engineer and operate the implementation of scalable, resilient, and secure IAM solutions for non-human identities
• Collaborate with IT, DevOps, and business units to integrate IAM controls into application and infrastructure pipelines
• Evaluate and recommend IAM technologies, tools, and automation to enhance security posture and operational efficiency

Operations & Resiliency

• Lead the day-to-day operations of non-human identity management, including provisioning, de-provisioning, monitoring, and incident response
• Develop and execute resiliency plans to ensure continuity and rapid recovery of IAM services
• Monitor and report on key metrics, risks, and incidents related to non-human identities

Stakeholder Management & Team Leadership

• Build and nurture relationships with senior executives, auditors, regulators, and internal stakeholders
• Lead, mentor, and develop a team of IAM engineers and analysts, fostering a culture of excellence and continuous improvement
• Communicate complex technical concepts to non-technical audiences and influence decision-making at all levels

Requirements

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
• 10+ years of experience in information security, with at least 5 years in IAM architecture and operations
• Proven expertise in non-human identity management, including secrets management, privileged access, and automation
• Strong background in security and resiliency engineering within large, regulated environments (preferably banking or financial services)
• In-depth knowledge of IAM technologies (e.g., CyberArk, HashiCorp Vault, Azure AD, AWS IAM), protocols, and standards
• Experience with regulatory frameworks (e.g., MAS, PCI DSS, SOX, GDPR) and risk management
• Experience in management of regulatory inspections or audits
• Exceptional interpersonal and communication skills, with demonstrated ability to influence and collaborate with senior management, peers, and technical teams
• Relevant certifications (CISSP, CISM, CCSP, or equivalent) are highly desirable

Key Competencies

• Strategic thinking and vision
• Technical leadership and hands-on expertise
• Security and resiliency mindset
• Strong analytical and problem-solving abilities
• Excellent stakeholder management and team leadership

Apply Now

We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.