Senior Associate, Security Regulatory and Compliance, ISS, Group Technology
Job posting details and responsibilities for the role.
Responsibilities
Risk Management:
Act as first line of defense and focal point for the team for risk and control matters
Collaborating across units to drive risk reduction and mitigation initiatives
Review identified issues, action plans proposed and verify remedial solutions for closure
Work with Line managers and oversee risk mitigation programs to remediate control gaps identified from root cause analysis and lessons learnt
Develop framework and metrics to support the department risk mitigation programs and escalate emerging or at-risk issues to the relevant stakeholders in a timely manner
Manage the KRIs reporting and track the KRIs to prevent KRIs breaches
Coordinate and drive programs to enhance the risk posture of the department
Manage the periodic risk reviews and assessments, control testing, analysis of key risk indicators to review effectiveness of internal controls and to ensure risk exposure over the key processes are within risk appetite and comply to the bank’s standards
Ensure proper documentation on risk mitigation programs from the department
Ensure accurate and timely submission of risk and control reports
Provide support and training to foster strong risk culture and risk awareness within the department
Conduct risk and control self-assessments to evaluate the risk and security posture of the department
Develop, review and update information security policies, standards and guidelines to benchmark against best practices, comply against regulatory requirements and ensure relevance to the operating environment
Audit, Regulatory, Compliance:
Manage internal / external audits, regulatory reviews and act as audit focal point for the department
Tracking and reporting status to the team and provide management updates in management forums
Requirements
Bachelor’s Degree in Computer Science, Engineering, Information Technology or related discipline from a recognized institution
At least five (5) years’ experience in technology development and support environment, vendor management, technology implementation or technology risk management
Prior working experience / knowledge in the following areas:
Technology and operational risks lifecycle management
Managing IT Audits / Governance / Risk Management programs
Performing risk reviews, assessments or threat modelling
Performing deep-dive investigation for control and process issues
Communicating risk and control findings with key stakeholders, developing recommendations and provide accurate metrics and management reports
Well versed with governance and control frameworks as well as regulatory requirements on technology management and controls
Sound understanding of technical processes, policies and risk measurements
Good control mindset and the ability to understand a broad range of operational and technical issues
Strong analytical, problem-solving skills and meticulous
Strong communication, interpersonal and written skills; able to communicate with stakeholders, higher management, technical support units and users
Influential in communication, able to drive towards agreed solution
Able to work independently with minimal supervision and with a positive attitude
Able to drive risk and control awareness within the department and drive cultural change
Experience in utilizing programming skills to analyse data to facilitate risk reviews and assessments
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Location : Singapore-DBS Asia Hub
Job Function : Information Technology
Job Type : Full-time
Job Posting : Oct 8, 2025, 5:00:00 PM
Note: This description focuses on the responsibilities and requirements of the role.
It does not include non-essential boilerplate text or external links.
#J-18808-Ljbffr