MyPage is a personalized page based on your interests.The page is customized to help you to find content that matters you the most.


I'm not curious
25

Manager - IT Risk, Governance and Compliance

Position Type Direct Contract
No. of opening(s) 1
Location Singapore
Posted 16-September-2020
Description
Seeking IT Security professionals with a keen interest in Governance, Risk and Compliance processes to contribute to the Security Engineering & Architect team in the implementation of Cybersecurity projects.
Skill-set Requirement
  • Degree in Computer Science, Information Security or Information Systems;
  • At least 5 years of experience in IT security space with a strong experience in IT GRC (Governance, Risk and Compliance) related functions;
  • Deep knowledge and understanding of internal controls, security frameworks, risk management and IT governance, auditing techniques and methodologies;
  • Good knowledge of enterprise IT systems and components (applications, operating systems, databases, networks, cloud, DevOps);
  • Familiar with industry standards related to IT Controls - ISO 27001, NIST, OWASP, Cloud Security;
  • Experience in working with vendors to evaluate security technologies and working on proof-of-concepts (POC);
  • Keen interest and knowledge on cyber security technologies (SIEM, NIDPS, CASB, VMS, Cyber-analytics);
  • Strong in analytical thinking with attention to detail;
  • Excellent communication and inter personal skills.

Desirable Skills
  • CISSP, CISM, CRISC, CGEIT and/or CISA certified.
Job Responsibilities
  • Act as a Subject Matter Expert on IT Governance, Risk management and Compliance (GRC) and related policies and procedures;
  • Contribute to the formulation and implementation of company wide IT governance standards and procedures in compliance with regulatory requirements;
  • Collaborate with application development and external vendor teams to implement IT risk assessment checklists and operational IT Risk Controls;
  • Continuously identify GRC Key risk indicators (KRI) and maintain IT Risk Register;
  • Collaborate with stakeholders for risk management, mitigation and remediation measures;
  • Liaise with internal and external parties for IT GRC related audits and facilitate timely remediation of issues;
  • Keep abreast of the dynamic cyber threat landscape and identify opportunities for enhancement of IT risk processes;
  • Work with key stakeholders in building a strong company wide risk-aware culture.
Domain
Government
Role Compatibility
Security/Audit Operations
Level Compatibility
Functional Consultant, Security Analyst, Technical Consultant

Related Posts:

Interested in this Job? Do you want to Re-Apply?

Name
*
Email
*
Phone
*
Location *
LinkedIn Profile
*
Tap to Attach your LinkedIn Profile
Resume
*

Company Details

Sciente International Pte Ltd
Sciente International Pte Ltd

 
Awards & Accolades for MyTechLogy
Winner of
REDHERRING
Top 100 Asia
Finalist at SiTF Awards 2014 under the category Best Social & Community Product
Finalist at HR Vendor of the Year 2015 Awards under the category Best Learning Management System
Finalist at HR Vendor of the Year 2015 Awards under the category Best Talent Management Software
Hidden Image Url