Ensuring IT security standards and procedures maintain the relevancy of meeting the regulatory requirements.
Working with internal and external stakeholders to determine key policy areas, through all phases of the policy lifecycle, including development, drafting, socialisation, policy approval, publication, and on-going policy reviews.
Increase awareness and its areas of strategic priority by communicating effectively with key stakeholder groups.
Review department's presentation materials to the respective committees.
Track and respond to regulatory queries such as MAS surveys, questionnaires, CSA advisories & notices, etc.
Degree in IT, Computing, Cyber Security or Computer studies, or the equivalent in related experience (IT Security, Controls and Risk Management).
Minimum 6-8 years working exposure in IT Security, IT Audit, or IT Risk exposures.
Independent and able to perform tasks with minimum supervision.
Excellent communication and interpersonal skills with good command on English.
Good infographic knowledge/skillsets for management reporting.
Good knowledge in compliance with MAS TRM, ABS, BNM, HKMA, CBRC, etc guidelines.
Certified in CISA, CISSP or CRISC would be preferred.