AVP, Group Information Security & Digital Risk Management

Job description

You are about to enter websites controlled or offered by third parties.

OCBC hereby disclaims liability for any information, materials, products or services posted or offered at any of these third party web-sites.

By creating a link to these third party web-sites, OCBC does not endorse or recommend any products or services offered or information contained on those web-sites or information fed by these third parties nor is OCBC liable for any failure of products or services offered or advertised at any of these third party web-sites.

OCBC Group shall in no event be liable for any damages, loss or expense including without limitation, direct, indirect, special, or consequential damage, or economic loss arising from or in connection with any use of or access to any other website linked to this website, any system, server or connection failure, error, omission, interruption, delay in transmission, or computer virus and any services, products, information, data, software or other material obtained from this website or from any other website linked to this website.

Any hyperlinks to any other websites are not an endorsement or verification of such websites and such websites should only be accessed at the user’s own risks.

This exclusion clause shall take effect to the fullest extent permitted by law.


You further consent to Oversea-Chinese Banking Corporation Limited, its related corporations (collectively, the OCBC Group), and their respective business partners and agents (collectively, the “OCBC Representatives”) collecting, using and disclosing your personal data for purposes reasonably required by the OCBC Group and the OCBC Representatives to enable them to process your employment application and assess your suitability for the position which you are applying for.

Such purposes are set out in a Data Protection Policy, which is accessible at or available on request and which you confirm you have read and understood.


AVP, Group Information Security & Digital Risk Management page is loaded
AVP, Group Information Security & Digital Risk Management Apply remote type Hybrid locations OCBC Singapore time type Full time posted on Posted Yesterday job requisition id JR
WHO WE ARE:
As Singapore’s longest established bank, we have been dedicated to enabling individuals and businesses to achieve their aspirations since 1932.

How?

By taking the time to truly understand people.

From there, we provide support, services, solutions, and career paths that meet their individual needs and desires.


Today, we’re on a journey of transformation.

Leveraging technology and creativity to become a future-ready learning organisation.

But for all that change, our strategic ambition is consistently clear and bold, which is to be Asia’s leading financial services partner for a sustainable future.


We invite you to build the bank of the future.

Innovate the way we deliver financial services.

Work in friendly, supportive teams.

Build lasting value in your community.

Help people grow their assets, business, and investments.

Take your learning as far as you can.

Or simply enjoy a vibrant, future-ready career.


Your Opportunity Starts Here.


Why Join
Protecting our customers' assets and information is at the heart of what we do at OCBC.

As an Information Security and Digital Risk Management Specialist, you'll play a critical role in safeguarding our digital landscape and ensuring the integrity of our systems.

You'll be part of a team that's passionate about staying ahead of emerging threats and risks.


How you succeed
As the Assistant VP of Information Security and Digital Risk Management (ISDRM), you will be responsible for the 2nd line governance and oversight of information security and digital risks (technology, information, and cyber) within the OCBC Group.

The primary role would be the ISDRM lead to support the Bank of Singapore (BOS) entity and its subsidiaries as well as group-wide responsibilities on thematic and risk assurance reviews.


What you do
Drive or support risk governance and oversight activities and provide effective challenge to strengthen the effectiveness of technology, information or cyber risk in Group, such as risk mitigation programs.


Plan and conduct 2nd line thematic reviews and risk assurance reviews in emerging risks arising from technology, information and cyber domains.


Perform regular risk monitoring and management reporting on risk posture to management and Board of Directors.


Drive or support the formulation and regular update of related Framework and supporting Policies to incorporate applicable industry leading practices and regulatory expectations.


Drive or support the review and enhancement of controls for existing banking services against emerging technology, information and cyber risks.


Provide risk advisory service, including recommendation of risk mitigation options, on technology, information and cyber risks associated with new banking services, fintech initiatives, outsourcing-related arrangements, regulatory and legal guidelines.


Support bank-wide initiatives to facilitate management of applicable legal & regulatory requirements (e.g., Cybersecurity Act, MAS Technology Risk Management Guidelines).


Keep abreast of new technologies and related risks, industry trends, and regulatory requirements relating to technology, information & cyber security.


Who you are
Degree in Computer Science or equivalent technical degree.


Relevant professional certifications (e.g., CISA, CISM or CRISC) would be advantageous.


More than 7 years of relevant experience in technology, information or cyber risk management, information security or IT audit within the financial services industry.


Proficient in risk management, IT governance, information & cyber security standards.


Experienced in leading risk assessments and risk assurance testing.


Good knowledge and experience in managing legal and regulatory requirements pertaining to technology, information or cyber risk domains (e.g., Singapore, Malaysia, Hong Kong, China).


Good written and communication skills, as well as solution oriented.


Ability to interact, engage and influence with stakeholders across all levels.


Ability to contribute through others, collaborate well across seniority, cultures and locations.


Proactive and able to work well under pressure or tight deadlines.


What we offer:
Competitive base salary.

A suite of holistic, flexible benefits to suit every lifestyle.

Community initiatives.

Industry-leading learning and professional development opportunities.

Your wellbeing, growth and aspirations are every bit as cared for as the needs of our customers.


If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!
#J-18808-Ljbffr

Required Skill Profession

Other General