Group Information Security Officer -ICG (ASPAC)

Group Information Security Officer -ICG (ASPAC)

  • Primary Location: Singapore,Singapore,Singapore
  • Education: Bachelor's Degree
  • Job Function: Technology
  • Schedule: Full-time
  • Shift: Day Job
  • Employee Status: Regular
  • Travel Time: Yes, 25 % of the Time
  • Job ID: 17037564


Job Description:
  • Work with the APAC Regional Information Security Officer (RISO) and GISOs in ASPAC as well as Global managing the IS programs, Shared services and operations for Asia Pacific.
  • Work closely with the Global IS office for the Institutional Clients Group (ICG) and ensure alignment to the various programs in the region
  • Provide management and leadership support to the RISO including being the second-in-command when needed and as part of succession planning
  • Ensure coverage and oversight of BAU operations for the domains and manage escalations effectively.
  • Implement & monitor corporate IS Policies / Programs in the region in collaboration with the global IS functions, with focus on the corporate Fast Track and High Focus IS programs.
  • Implement IS Programs like TPISA, ISRA etc., for the AP Region both in terms of program roll-out and metrics management.
  • Lead and manage Cyber security related events, exercises and client response/presentations.
  • Understand and implement requirements from other relevant Citigroup policies, legal and regulatory requirements that impact IS and Technology Risk Management.
  • Develop a strong understanding of the underlying technical requirements of the IS Policy, identification of compliance gaps and provide appropriate consultation to the businesses on the resolution options.
  • Maintain and enhance status as a subject matter expert for all IS matters.
  • Manage all IS programs including metrics specific to ASPAC region and countries as needed and provide early & timely detection, reporting, escalation and remediation of IS risks and outstanding issues.
  • Explore and implement solutions to efficiently manage the IS programs and simplify the processes.
  • Demonstrate a comprehensive understanding of how areas of IS controls collectively integrate to contribute to achieving business goals (good industry knowledge is expected).
  • Provide oversight to ensure that processes and projects are completed in a timely manner.
  • Monitor CAPs and remediation efforts in response to security events, assessment and audit results.
  • Maintain up-to-date knowledge of the status of all IS programs and initiatives in the business.


  • University Degree and CISA/CISM/CISSP certification(s).
  • 8 to 10 years of solid experience in Information Security, Risk or Control & Compliance, IT Analysis / Design, Program / Project Management, Information Security, Risk or Control & Compliance.
  • Strong collaborative and communication skills. Highly dependable team player with ongoing commitment to excellence.
  • Organized, self-motivated and able to work independently with minimal supervision in a fast-paced environment and with tight schedules.
  • Be available to team and management for providing solutions, support and guidance.
  • Ability to manage team members across various countries in the ASPAC region and work closely with other Line of Business GISO and related ISO community
  • Demonstrated strength in people management and team building.
  • Collaborative, can-do attitude, ownership minded and Strong execution capability.
  • Excellent communication and interface skills. Asia language would be an advantage.
  • Ability to operate in diverse environments and cultures.
  • In depth knowledge of Operations & Processes, ideally across multiple geographies.
  • Must be highly organized and have strong project management skills.
  • Able to operate and articulate effectively in a matrix environment.
Primary Location: Singapore
Education: Bachelor's Degree
Job Function: Technology
Travel Time: Yes, 25 % of the Time
Job ID: 15102174