Information Security and Digital Risk Management - MD - OCBC

WHO WE ARE: As Singapore's longest established bank, we have been dedicated to enabling individuals and businesses to achieve their aspirations since 1932.

By taking the time to truly understand people, we provide support, services, solutions, and career paths that meet their individual needs and desires.

Today, we're on a journey of transformation, leveraging technology and creativity to become a future‑ready learning organisation.

Our strategic ambition is to be Asia's leading financial services partner for a sustainable future.

Information Security and Digital Risk Management Specialist

Why Join

Protecting our customers' assets and information is at the heart of what we do at OCBC.

As an Information Security and Digital Risk Management Specialist, you'll play a critical role in safeguarding our digital landscape and ensuring the integrity of our systems.

You'll be part of a team that is passionate about staying ahead of emerging threats and risks.

How you succeed

As the Executive/Managing Director of Group Information Security & Digital Risk Management (ISDRM), you will provide oversight and advisory services on information security and digital risks (technology, information, and cyber) within the OCBC Group.

Your role includes key risk activities such as risk advisory for new and modified banking products, raising cybersecurity concerns, and safeguarding the integrity of OCBC Group's digital offerings.

What you do

• Support risk governance and oversight activities, including leading risk mitigation programs.
  
  
• Provide expert advisory and approval on digital risks for banking products.
  
  
• Provide expert advisory and challenge on cybersecurity domain across the bank.
  
  
• Recommend enhancements to application‑level anti‑fraud measures and security controls for digital banking channels against emerging threats.
  
  
• Conduct due diligence on third‑party service provider's digital risk management.
  
  
• Support the development and updates of policies to align with industry best practices and regulations, and guidelines for the safe use of emerging technologies.
  
  
• Stay updated on emerging technologies, industry trends, and regulatory requirements in technology, information, and cyber risk management.
  
  

Who you are

• Degree in Computer Science, Cybersecurity, or related field.
  
  
• Proven experience in leading risk advisory and driving risk reduction initiatives.
  
  
• Strong analytical and solution‑oriented mindset, with the ability to work under pressure.
  
  
• Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders across business and technology domains.
  
  
• Relevant professional certifications (e.g., CRISC, CISM, WAPT) are advantageous.
  
  
• Over 20 years of experience in information security, technology and cyber risk management with a strong emphasis on application and software security in the financial services industry.
  
  
• Proven expertise in secure application architecture, information and cyber security.
  
  
• Proficient in technology and cyber risk management guidelines from regulators like MAS and organizations like NIST.
  
  

What We Offer

Competitive base salary.

A suite of holistic, flexible benefits to suit every lifestyle.

Community initiatives.

Industry‑leading learning and professional development opportunities.

Equal opportunity.

Fair employment.

Selection based on ability and fit with our culture and values.

Your wellbeing, growth and aspirations are every bit as cared for as the needs of our customers.