Senior Manager - Risk & Control Assurance (Risk & Sector Governance)

Position Overview

As a member of the Risk/Control Assurance team in Synapxe, the incumbent will be required to work closely with internal, and external stakeholders to ascertain the adequacy and effectiveness of the implemented governance controls in the organisation through routine and/or ad-hoc programmes that may be commenced by the senior management from time to time.

The incumbent will be required to work independently, to support the routine and/or ad-hoc programmes, and to apprise the respective Reporting Officer and/or Project Lead of the progress and outcome of the programmes.

Role & Responsibilities

• Risk Assurance – Target to address up to ten (10) Medium-High and above identified risks per fiscal year.  
• Control Assurance – To support the delivery of Synapxe Control Assurance Programme (3-year plan), and to align with Group IA Multi-year Audit Plan.
• Control Assurance – To support regular thematic reviews of governance processes.
• Control Assurance – To support cyber-attack simulation exercise to assess PH’ cyber defenses and CVIP.
• To support review that aims to ascertain the adequacy and effectiveness of the established cybersecurity & technology governance framework, policy, and process.
• To support review of the ICT security posture to identify key areas for improvement against current and emerging cyber threats.
• To support the regular monitoring and reporting of key risk and performance indicators to gauge the ICT security posture.
• To support workgroup discussion in accordance with the established objectives of the initiative/programme, and/or as per senior management guidance. 
• To support the development and/or review the department processes and/or procedures, maintain its relevance and aligning to relevant PH wide policies and standards.
• To stay current of new industry trends, and regulatory requirements relating to ICT, information security and cybersecurity.

Requirements

• Degree in Computer Science, Information Systems, Engineering or equivalent.
• At least 10 years of experience in cybersecurity and risk management
• Prior experience in designing, implementing and operating cybersecurity solutions in large organizations, including in the areas of privileged access management, security monitoring, vulnerability management, etc.
• Good knowledge and experience with regulatory requirements relating to cybersecurity in Singapore.
• Candidates with CISA, CISM and/or CISSP certifications would have an advantage.
• Self-motivated with strong interpersonal and stakeholder management skills.
• Excellent verbal, written communication, and interpersonal skills with stakeholders at all levels.

Apply Now

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

#LI-SYNX13