We have an excellent career opportunity to part of the Technology Risk Advisory team and oversee the Technology Risk Management (TRM) tasks and projects with an established company within the Insurance Sector.
Degree or Diploma in Computer Science, Computer Engineering or Information System;
At least 5 years of experience in Information Security field and at least 2 years in IT Risk Management;
Experienced with RCSA process of risk management and familiar with international standards and best practices such as ISO27001 etc.;
Good understanding of MAS Technology Risk Management (TRM) requirements;
Proficient in Microsoft Excel and other IT systems;
Excellent communication, presentation, and advisory skills;
Ability to work independently, manage stress and multi-task in a fast-paced environment;
Proactive, motivated and independent.
CISSP, CRISC, CISM and/or CISA certified;
Knowledge of ISO, BS and COBIT.
Identify, assess, manage and report all technology risks and control to the relevant team;
Assess and perform third party risk on all vendors and services;
Track process improvements and support relevant stakeholders during remediation process;
Ensure compliance by following up on remediation process;
Improve control effectiveness and efficiencies from perspective of people, process and technology;
Perform compliance audit on various on various vendors to ensure they comply to IT standards and MAS TRM compliance activities;
Conduct routine risk monitoring activities on cyber threats and issues;
Review policy change request and determine feasibility of changes;
Review and ensure that controls and processes adhere to the standards, processes and procedures;
Be the subject matter expert to project teams on information security related matters.