• Competitive
  • Singapore
  • Permanent, Full time
  • OCBC Bank
  • 19 Sep 17

Regional Head - Technology Information Security Office

Regional Head - Technology Information Security Office

Job Purpose :
This is a regional lead role for information security. Working closely with senior technology and business managers in Singapore, Malaysia and China you are responsible for establishing and maintaining the enterprise vision, strategy and program to ensure information assets and technologies are adequately protected . You will operate with a high degree of autonomy and provide strong leadership to manage information security risks and threats as well as be the primary partner for regulatory and compliance relationships internally and with external authorities. You will also direct the Computer Emergency Response Team to manage and control security incidents, establish appropriate standards and controls, manage security technologies, and direct the establishment and implementation of policies and procedures.

Job Description:
- Directs and takes responsibility for the bank's overall Information Security assurance. This includes establishing the Technology Security strategy, policy, implementation and security operations
- Ensures the organizational compliance to regional regulatory policies and directives for information security
- Heads and directs the Computer Emergency Response Team
- Owns and maintains the Information Security architecture, Identity & Access management architecture
- Responsible for the effective operation of the Information Security Operations Centre
Qualification Requirements :
The following certifications (or equivalent) are preferred.
  1. Certified Information Systems Security Professional (CISSP)
  2. Certified Information Systems Auditor (CISA)
  3. Certified in Risk and Information Systems Control (CRISC)
Working Experience/Skills :
  1. At least 15 years' experience in leading information security practices for financial institutions. Of which at least 5 years are at the senior executive leadership role.
  2. Possess deep insight in leading information security and risk management standards and practices.
  3. A strong team player and able to work effectively at senior levels of the organization with the ability to interact closely with C-level executives.
  4. A strong communicator who is able to work closely with industry partners, peer organizations and comfortably interact with senior executives of regional regulatory bodies.
  5. Strong situational analysis and decision making abilities. Proven l eadership and management skills to transform the organization and provide thought leadership in the information security domain.


Qualifications
Job Purpose :
This is a regional lead role for information security. Working closely with senior technology and business managers in Singapore, Malaysia and China you are responsible for establishing and maintaining the enterprise vision, strategy and program to ensure information assets and technologies are adequately protected . You will operate with a high degree of autonomy and provide strong leadership to manage information security risks and threats as well as be the primary partner for regulatory and compliance relationships internally and with external authorities. You will also direct the Computer Emergency Response Team to manage and control security incidents, establish appropriate standards and controls, manage security technologies, and direct the establishment and implementation of policies and procedures.

Job Description:
- Directs and takes responsibility for the bank's overall Information Security assurance. This includes establishing the Technology Security strategy, policy, implementation and security operations
- Ensures the organizational compliance to regional regulatory policies and directives for information security
- Heads and directs the Computer Emergency Response Team
- Owns and maintains the Information Security architecture, Identity & Access management architecture
- Responsible for the effective operation of the Information Security Operations Centre
Qualification Requirements :
The following certifications (or equivalent) are preferred.
  1. Certified Information Systems Security Professional (CISSP)
  2. Certified Information Systems Auditor (CISA)
  3. Certified in Risk and Information Systems Control (CRISC)
Working Experience/Skills :
  1. At least 15 years' experience in leading information security practices for financial institutions. Of which at least 5 years are at the senior executive leadership role.
  2. Possess deep insight in leading information security and risk management standards and practices.
  3. A strong team player and able to work effectively at senior levels of the organization with the ability to interact closely with C-level executives.
  4. A strong communicator who is able to work closely with industry partners, peer organizations and comfortably interact with senior executives of regional regulatory bodies.
  5. Strong situational analysis and decision making abilities. Proven l eadership and management skills to transform the organization and provide thought leadership in the information security domain.