Talent.com
Third Party & Outsourcing Information Security Risk Manager
Third Party & Outsourcing Information Security Risk ManagerUOB • Kuala Lumpur, Kuala Lumpur, Malaysia
Third Party & Outsourcing Information Security Risk Manager

Third Party & Outsourcing Information Security Risk Manager

UOB • Kuala Lumpur, Kuala Lumpur, Malaysia
8 hari lalu
Penerangan pekerjaan

Third Party & Outsourcing Information Security Risk Manager

2 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

About UOB

United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. In Asia, we operate through our head office in Singapore and banking subsidiaries in China, Indonesia, Malaysia and Thailand, as well as branches and offices. Our history spans more than 80 years. Over this time, we have been guided by our values – Honorable, Enterprising, United and Committed. This means we always strive to do what is right, build for the future, work as one team and pursue long-term success. It is how we work, consistently, be it towards the company, our colleagues or our customers.

Job Description

UOB Innovation Hub 2 (InnoHub2) is a UOB-wholly owned subsidiary and a Centre of Excellence based in Malaysia, providing Group Business Services (GBS) to support the UOB Group. Started in 2021 with technology application design, development and support, InnoHub2 is expanding beyond technology services to deliver other business services to support the Bank’s growth ambition. We are looking for talented and motivated individuals to be part of the pioneer team spearheading the development and delivery of the new services. As part of the InnoHub2 team, you will have the opportunity to work on Group initiatives and gain regional business exposure. We are dynamic, passionate and purposeful about delivering trusted financial solutions that enables business growth. An exciting career progression with varied opportunities awaits you at IH2. Come grow your career with us.

Job Responsibilities

  • Plan and conduct IT Security Risk Assessment on bank's systems throughout the lifecycle covering different layers of technology architecture to identify possible security risks, advise and evaluate the mitigation controls and measure the residual risk.
  • Manage third party IS Due diligence on bank’s service suppliers, including on-site assessments when required.
  • Involve in Tech Obsolescence Risk program and identify security risks resulted from obsolescence.
  • Lead the targeted workstreams and support ad-hoc assignments as requested.
  • Collaborate closely with technology and business stakeholders to ensure security risks are identified, communicated, understood therefore an informed decision on risk can be made.
  • As a trusted partner and subject matter expert, provide security advisory to technology and business units.
  • As the HQ function, guide and support IS teams of subsidiaries to ensure oversight and consistency on IT security risk management.
  • Support the Third Party and IT Security risk committees to ensure robust IT Security risk governance.
  • Develop, maintain, and enhance the relevant IT Security checklists, processes and guidelines.
  • Continuously focus, strategise and implement process improvements e.g. automation, workflow design and digitization for an effective and efficient IT Security risk management.
  • Provide reporting and tracking of work deliverables.
  • Keep up-to-date awareness of security trends covering both new threats and technologies in order to understand the evolving risk and better safeguard the organization.
  • Attend to audit RFI from Internal, External and Regulator audit / inspection.

Job Requirements

  • Bachelor’s degree in Computer Science, Information Technology, or a related field is required.
  • At least 8 years of experience in Information Security and risk related work preferable in large organization especially banking environment.
  • Deep understanding of threat modeling and risk management principles and best practices, and able to explain it in a structured and easy-to-understand manner.
  • Strong understanding of the Banking industry IS policy and standards, regulatory and industry guidelines, good practices in providing practical and appropriate recommendation, resolution and remediation options to the businesses.
  • Strong relationship building, stakeholder management, communication, presentation and influencing skills with both technical and non-technical staff.
  • Experience in managing senior business stakeholders.
  • Demonstrate the strong motivation and capabilities to drive initiatives and changes.
  • Proactive, strong team leader and player with minimal supervision.
  • Excellent analytical and problem-solving skills. Ability to simplify complex issues such as risk matters, workflows and business processes, and develops effective solutions.
  • Experience in industry standards and requirements such as ISO 27001, MAS TRM, NIST, CCM.
  • Industry certifications issued by organizations such as ISC2, ISACA, SANS, Microsoft, CISCO, AWS, etc.

    • Be a part of UOB Family

    UOB is an equal opportunity employer. UOB does not discriminate on the basis of a candidate's age, race, gender, color, religion, sexual orientation, physical or mental disability, or other non‑merit factors. All employment decisions at UOB are based on business needs, job requirements and qualifications. If you require any assistance or accommodations to be made for the recruitment process, please inform us when you submit your online application.

    Apply now and make a difference.

    Additional Requirements

    Be a Part of the UOB Family. UOB is an equal opportunity employer. UOB does not discriminate on the basis of a candidate's age, race, gender, color, religion, sexual orientation, physical or mental disability, or other non‑merit factors. All employment decisions at UOB are based on business needs, job requirements and qualifications. If you require any assistance or accommodations to be made for the recruitment process, please inform us when you submit your online application. Apply now and make a Difference.

    Seniority level

  • Mid‑Senior level

    • Employment type

  • Full‑time

    • Job function

  • Management and Manufacturing
  • Banking

    • Referrals increase your chances of interviewing at UOB by 2x

    Get notified about new Outsourcing Specialist jobs in Greater Kuala Lumpur .

    #J-18808-Ljbffr

    Buat amaran kerja untuk carian ini

    Information Security • Kuala Lumpur, Kuala Lumpur, Malaysia