Job Description
Cybersecurity Strategy and Governance:
Develops a multi-year information security strategy to meet regulatory obligations and factor output into crucial business decisions.
Establish cybersecurity policies, standards, and procedures to ensure compliance with regulatory requirements (eg. MAS TRM) and industry best practices.
Provide strategic guidance and oversight to ensure the effective governance of cybersecurity risks and resources.
Provide effective leadership in cybersecurity and create tailored management reports for the group and each subsidiary.
Risk Management and Compliance:
Conduct regular risk assessments and vulnerability assessments to identify and prioritize cybersecurity risks.
Implement controls and mitigation strategies to address identified risks and ensure the resilience of information assets.
Ensure compliance with relevant regulations, standards, and frameworks (e.g. ISO 27001, NIST Cybersecurity Framework).
Responsible for identifying, owning, and managing key risk indicators (KRI) and IT security controls to ensure they are well-designed and effective in mitigating risks within tolerance levels.
Incident Response and Recovery:
Develop and maintain an incident response plan to effectively detect, respond to, and recover from cybersecurity incidents.
Lead incident response efforts, including coordination with internal teams, external partners, and law enforcement agencies as necessary.
Conduct post-incident reviews and implement lessons learned to enhance incident response capabilities.
Vendor and Third-Party Risk Management:
Establish processes and procedures for assessing and managing cybersecurity risks associated with third-party vendors and partners.
Conduct due diligence assessments of vendors security practices and ensure compliance with contractual security requirements.
Monitor and evaluate third-party risk exposure and implement controls to mitigate identified risks.
Security Awareness and Training:
Promote a culture of security awareness throughout the organization including subsidiaries, ensuring that employees understand their role in maintaining cybersecurity.
Develop and deliver cybersecurity training programs and awareness campaigns to educate employees on security best practices and emerging threats.
Monitor and measure the effectiveness of security awareness initiatives and adjust strategies as needed.
Job Requirement
Strong technical background in information security, with a minimum of 10 years of experience and at least 5 years in a leadership role.
Proven experience in a senior leadership role overseeing cybersecurity strategy and operations, preferably in a regulated environment.
Proven track record in managing and mentoring security teams in a fast-paced environment.
Expertise in security technologies, risk management, and compliance.
Excellent communication skills, with the ability to convey complex security issues to non-technical stakeholders.
Strong problem-solving skills, particularly in security and compliance contexts.
Education
Bachelors degree in Computer Science, Information Technology, or a related field
Relevant certifications (e.g., CISSP, CISM, CISA) are preferred.
About SinglifeSinglife is the regions fastest scaling technology company that focuses on holistic financial well-being. Singlife is also the first independent life insurance company licensed by the Monetary Authority of Singapore since
- As a testament to the strength of Singlife's strong capital base and governance, it successfully acquired Zurich Life Singapores business portfolio and achieved more than SGD6.6 billion in life insurance coverage. Singlife is on a mission to change the way people look at growing their wealth and ensuring a financially-secured retirement. To attain this vision, Singlife builds itself as an efficient company seamlessly integrating cutting-edge technology capabilities via a swathe of consumer-centric products so as to enable our customers to live their best lives with complete protection.Our Mission- A connected financial experienceAt Singlife, our mission is to unlock the potential of money for you. We are building a connected financial experience by leveraging smart technologies to make insurance digital and mobile-first.What we OfferAccessibility- View policy information through your mobile device, tablet, or desktop.Affordability- Get better coverage at a much friendlier price.Convenience- Sign up online and get covered in minutes.Transparency- Customise coverage and policy features and receive real-time quotations.
