Manager - IT Risk Assurance and Governance

18 Jun 2020

Manager - IT Risk Assurance and Policy


Job Role:

Manager - Risk Assurance and Policy


CISO Office

Years of Experience

At least 6 - 8 years' experience in developing, implementing and maintaining IT systems

Position Summary / Project Description

CISO office is the 2nd line of defense and plays a vital role in Cyber security governance function for various sub-entities of an enterprise scale End-User environment within HealthTech. Manager, CISO Office drives assurance and risk management initiatives for effective implementation of cyber security strategy.

Role and Responsibilities

Reporting to the Chief Information Security Officer, he/she will have the following responsibilities:

1. Assist in policy enforcement, deviation review and tracking

2. Conduct risk assessments and maintain risk register with action plans for entity risks

3. Conduct compliance assessments for security requirements from policy and regulators

4. Implement cyber security awareness program catering various roles in the entity

5. Provide support to CIO office in setting up a Vulnerability management program

6. Perform regular cybersecurity risk metrics reporting and monitor key risk indicators

Requirements / Qualifications

1. More than 3 years of hands-on experience in cyber security / cyber risk management roles

2. Experience in network security, application security, vulnerability assessment and validation 3. Experience in cybersecurity risk identification and analysis and recommending risk reduction measures

4. Good knowledge and experience with platform, network and application technologies

5. Good knowledge and experience with regulatory requirements pertaining to cybersecurity.

Rob Warner

M3S Solutions/Morgan McKinley

EA Licence No: 11C5502

Registration No: R2090074

Robert Warner - R2090074's picture
Programme Delivery Lead | M3S
Singapore +65 6818 3181 |