Overview

Group Information Security & Digital Risk Management

AVP, Group Information Security & Digital Risk Management  (25000009)

Description

 

Why Join 

The Group Information Security & Digital Risk Management team undertakes a wide range of responsibilities, including risk governance and oversight, risk reporting to senior management and Board, policy formulation, risk assessments, vulnerability management, incident response, security awareness training, and compliance-drive initiatives. This variety of responsibilities offers a diverse and engaging work experience.  

You will be responsible for the 2nd line governance and oversight of information security and digital (i.e., technology, cyber and information risks) within the OCBC Group. The primary role would be to drive key project/ initiatives leveraging big data platforms to analyse large datasets to derive risk insights. 

How you succeed

Regularly update your knowledge on the latest cybersecurity threats, trends, and emerging technologies. This includes understanding emerging technologies like artificial intelligence (AI), machine learning, and blockchain and associated risks.

Familiarize yourself with relevant regulations and standards that impact the organization’s overall control environment and risk profile.

Develop a strong understanding of risk assessment methodologies and frameworks to evaluate and mitigate risks effectively. 

What you do

  • Data-Driven Risk Management: Drive projects or initiatives that leverage big data platforms, including data analytics tools and visualization techniques, to analyse large datasets and derive risk insights. This includes partnering with key stakeholders, tracking project status, and providing recommendations to senior management.
  • Risk Governance and Oversight: Drive or support risk governance activities; provide independent and effective challenge (e.g., on risk mitigation programs) to strengthen the effectiveness of technology, information or cyber risk management across Group.
  • Risk Monitoring and Reporting: Perform regular risk monitoring and management reporting on risk posture to senior management and the Board.
  • Control Review and Enhancement: Support the review and enhancement of controls to better mitigate against emerging technology, information and cyber risks.
  • Regulatory Compliance: Lead or support bank-wide initiatives to work towards compliance with applicable legal & regulatory requirements (e.g., Cybersecurity Act, MAS Technology Risk Management Guidelines). 

Who you work with

Group Risk Management works independently to protect, build, and drive our businesses. The team support good decision-making. With strong risk analysis. And a crucial, comprehensive role in sharpening our competitive edge. Optimising risk-adjusted returns. It’s about seeking and adopting best-in-class practices. Protecting the group from unforeseen losses. Keeping risk within appetite. Embracing change and managing growth in one of the world’s strongest banks.

 

Qualifications

 

Who you are

  • Degree in Computer Science or equivalent technical degree.
  • Relevant professional certifications (e.g., CISA, CISM, CRISC or PMP) would be advantageous.
  • More than 7 years of relevant experience in technology, information or cyber risk management, information security or IT audit within the financial services industry. Candidates with strong data analytics skills and experience working with big data platforms, machine learning, and AI applications in risk management are encouraged to apply, even if their risk management experience is less extensive.
  • Proficient in data analytics tools and visualisation techniques (e.g., SQL, Python, PowerBI), experience with big data platforms (e.g., Hadoop) would be advantageous.
  • Familiar with machine learning and AI applications in risk management.
  • Proficient knowledge of technology risk management guidelines from MAS or any regional regulators.
  • Good written and communication skills, as well as solution oriented.
  • Ability to contribute through others, collaborate well across seniority, cultures, and locations.
  • Proactive and able to work well under pressure or tight deadlines.

Who we are

Singapore’s longest established bank, we’ve been helping people and businesses get what they want from life since 1932. How? By taking the time to truly understand people. From there, we provide support, services, solutions, and career paths that meet their individual needs and desires. 

Today, we’re on a journey of transformation. Embracing technology and creativity to become a future-ready learning organisation. But for all that change, the entire focus of our organisation remains to be Simply Spot On. In everything we do. 

And so whether you want innovate needs-based financial services. Work in friendly, supportive teams. Build lasting value in your community. Help people grow their assets, business, and investments. Take your learning as far as you can. Or simply enjoy a vibrant, future-ready career. Your Opportunity Starts Here. 

What we offer

Competitive base salary. A suite of holistic, flexible benefits to suit every lifestyle. Community initiatives. Industry-leading learning and professional development opportunities. Your wellbeing, growth and aspirations are every bit as cared for as the needs of our customers.

 

Primary Location

: Singapore

Job

: Information Risk Management and Security

Organization

: Group Information Security & Digital Risk Management

Schedule

: Permanent

: Full-time

Job Posting

: 09-Jan-2025, 2:12:22 PM

Tagged as:

About OCBC Bank

OCBC is the longest established Singapore bank, formed in 1932 from the merger of three local banks, the oldest of which was founded in 1912. It is now the second largest financial services group in Southeast Asia by assets and one of the world’s most highly-rated banks, with an Aa1 rating from Moody’s. Recognised for its financial strength and stability, OCBC is consistently ranked among the World’s Top 50 Safest Banks by Global Finance and has been named Best Managed Bank in Singapore by The Asian Banker.

OCBC and its subsidiaries offer a broad array of commercial banking, specialist financial and wealth management services, ranging from consumer, corporate, investment, private and transaction banking to treasury, insurance, asset management and stockbroking services.

OCBC’s key markets are Singapore, Malaysia, Indonesia and Greater China. It has more than 570 branches and representative offices in 19 countries and regions. These include about 300 branches and offices in Indonesia under subsidiary Bank OCBC NISP, and over 90 branches and offices in Mainland China, Hong Kong SAR and Macau SAR under OCBC Wing Hang.

OCBC’s private banking services are provided by its wholly-owned subsidiary Bank of Singapore, which operates on a unique open-architecture product platform to source for the best-in-class products to meet its clients’ goals.

OCBC's insurance subsidiary, Great Eastern Holdings, is the oldest and most established life insurance group in Singapore and Malaysia. Its asset management subsidiary, Lion Global Investors, is one of the largest private sector asset management companies in Southeast Asia.