VP, Information & Technology Risk Manager (16715)

GIC is one of the world’s largest sovereign wealth funds. With over 2,000 employees across 11 locations around the world, we invest in more than 40 countries globally across asset classes and businesses. Working at GIC gives you exposure to an extraordinary network of the world’s industry leaders. As a leading global long-term investor, we Work at the Point of Impact for Singapore’s financial future, and the communities we invest in worldwide.

We work collaboratively across teams to help guard against blind spots and ensure that all relevant risks are considered and duly addressed.

What will you do as an VP, Information & Technology Risk Manager?

• Conduct comprehensive risk assessments for technology-related areas, including cloud security, API security, SSDLC, and network security.
• Develop and implement risk management frameworks, and procedures.
• Monitor and report on technology risk exposures and mitigation efforts.

• Provide independent oversight of technology risk management activities conducted by the first line of defense.
• Ensure compliance with regulatory requirements and internal policies.
• Review and challenge risk assessments, controls, and mitigation strategies.

• Work closely with IT, cybersecurity, and other relevant teams to ensure effective risk management practices.
• Communicate risk findings and recommendations to senior management and the board.
• Facilitate risk awareness and training programs

• Oversee the response to technology-related incidents and breaches.
• Conduct post-incident reviews and ensure lessons learned are integrated into risk management practices.

• Stay updated on emerging technology risks and industry best practices.
• Continuously improve risk management frameworks and controls.
• Lead initiatives to enhance the organization's technology risk posture.

• 8-10 years of experience, preferably with exposure to technology risk management within risk control and audit functions in the IT infrastructure and cyber security domain.
• Demonstrated experience in identifying, assessing, and advising on technology risks and controls in a cross-disciplinary technology environment, preferably within a financial institution.
• Strong understanding of regulations from authorities such as MAS, RBI, HKMA, and familiarity with industry standards including ISO, NIST, ITIL, and cybersecurity frameworks.
• Experienced IT risk professional with exposure to Agile methodologies, DevSecOps practices, cyber security, network security, API security, cloud security and technologies.
• Excellent organizational, problem-solving, interpersonal, and operational skills to effectively drive the IT Risk agenda within IT functions.
• Strong communication skills at all levels, with the ability to effectively engage with IT teams, senior management, and line staff to drive IT risk mitigation initiatives and other IT risk management activities.
• Strong interest in staying updated on the latest regulations, emerging technologies, system vulnerabilities, and technology risk trends to maintain relevance in the rapidly evolving technological landscape.

We need to be forward-looking to attract the right people to help us become the Leading Global Long-term Investor. Join our ambitious, agile, and diverse teams - be empowered to push boundaries and pursue innovative ideas, share your views, and be heard. Be anchored on our PRIME Values : Prudence, Respect, Integrity, Merit and Excellence, which guides us in how we make our day-to-day decisions. We strive to inspire. To make an impact.

At GIC, our offices are vibrant hubs for ideation, professional growth, and interpersonal connection. At the same time, we believe that flexibility allows us to do our best work and be our best selves. Thus, our teams come into the office four days per week to harness the benefits of in-person collaboration, but have the flexibility to choose which days they work from home and adjust this arrangement as situational needs arise.

As an employer, we passionately believe every individual brings with them unique diversity of thought and perspectives to meaningfully enrich perspectives of GIC teams to drive competitive performance. An inclusive environment yields exceptional contribution.

https://gic.careers/group/risk-performance-management/

https://careers.gic.com.sg/job-invite/16715/

• Risk Assessment
• Assessing
• Emerging Technology
• Risk Control
• Cyber Security
• Defense
• ISO
• Agile Methodologies
• ITIL
• Network Security
• Performance Management