Manager, Technology Assurance

Reporting to the Technology Assurance Domain Lead, as the successful candidate, will be part of the Technology Assurance team to execute assurance reviews across applications, infrastructure and information and cyber security domains.

What you’ll do

• Support the Technology Assurance Domain Lead in the formulation and management of the targeted control review work plan and program for effective internal controls and checks on the Group’s Technology and contribution to the improvement of governance and control processes.

• Execute risk-based targeted review (including compliance review against IT policies and relevant regulations) of IT, Security and/or application controls.

• Evaluate the adequacy and effectiveness of controls; drive issue discussion with stakeholders, prepare review reports, identifying critical risks with appropriate recommendations under limited supervision.

• Review the adequacy of the action plans implemented to ensure satisfactory closure of action plans.

• Participate in periodic stakeholder engagement meetings throughout the reviews to maintain regular communication and drive early risk discussion with stakeholders.

• Contribute in the continuous improvement of assurance review approach to digital and data analytics-based model by developing use cases to enhance coverage and quality of review and improve productivity.

• Support ad-hoc reviews and/or assigned tasks.

The knowledge, experience and qualifications you’ll need to succeed

• Degree holder with additional Banking, Finance or Accounting qualifications.

• At least 5 years of relevant experience in audit or risk management related functions with control testing experience of a financial services institution.

• Exposure to MAS Technology Risk Management guidelines and/or good understanding of technology processes in the banking industry will be an advantage.

• Well versed in the technical security controls for one of the following areas: web security, network security, system security, DLP controls, IAM, AS/400 and Unix operating systems controls, database controls.

• Experience in usage of data analytics for audit reviews and/or continuous auditing will be a strong plus.

• Excellent communication skills (verbal, written and presentation) to deliver timely assurance reports to senior management and stakeholders.

• Self-motivated and driven, good team player, keen learner to continuously develop relevant technical expertise, and able to work independently in a face-paced environment.

The competencies you’ll need to succeed

• A strong team player with the ability to drive results and the passion for excellence.

• Possess good critical thinking skills and be able to navigate complex and ambiguous situations, analyse complex issues while maintaining clarity and direction for the team.

• With ability to look at issues from multiple angles, the candidate should be able to appreciate diverse perspectives, complexity and ambiguity in management and support strategic decisions.

• Strong stakeholders’ management skills, especially with senior management and/or risk committees and regulatory bodies.

• Ability to plan and execute concurrent reviews effectively.

• Self-directed, self-motivated with the ability to take ownership for business unit goals, he/she should make sound decisions in a timely manner, use good judgment and keep initiatives moving.

• Possess strong verbal and written communications skills and with effective presentation skills.