IT Risk Management – Senior Associate / Assistant Manager

  • Competitive
  • Singapore
  • Permanent, Full time
  • KPMG Services Pte Ltd
  • 30 Sep 16

IT Risk Management – Senior Associate / Assistant Manager

KPMG Information Protection & Business Resiliency (IPBR) Advisory professionals assist clients to protect the confidentiality, integrity and availability of their IT infrastructure/ application systems and data.

To join a growing team to assist clients with managing their IT risks and recommending / implementing improvements to IT processes and controls to better manage risks. Provide clients with consultancy concerning IT Risk Management topics covering IT governance frameworks, application/infrastructure controls, system resiliency (BCM//DR), IT outsourcing / vendor assurance, IT security governance & controls, data protection/privacy/classification, SDLC controls, project risk management (pre & post imp). Applicants will apply their knowledge of IT best practice standards/ISO standards or IT regulations to help clients better manage their risks.

The successful candidate will have the following responsibilities:

• working in a collaborative team to deliver IT governance & risk, IT regulatory and compliance advisory services, as well as to implement key information security solutions
• identifying and resolving complex issues and develop innovative solutions for clients
• supporting the development of recommendations and presentations for client engagements
• working with high profile clients on a variety of local and international engagements

Personality traits leading to a good fit into the team include independence, innovative and resourceful thinking with strong interpersonal, organisational, presentation and report writing skills. A naturally inquisitive mind with an ability to think "outside the box" is preferred.

The role involves:

• Planning and executing the day-to-day activities of IT consulting engagements for a variety of clients, including reviews of application controls, systems development, and IT platforms (databases, servers, operating systems)
• Evaluating the design and effectiveness of technology management controls and IT governance & risk management practices supporting the client's business and operations
• Supervising and providing performance management for IT audit staff working on assigned engagements
• Identifying and communicating gaps to senior management and clients, as well as providing advice on IT performance improvement opportunities for clients

The ideal candidate should demonstrate the following:

• Technical applied experience working in one or more of these domains - IT Risk Management, IT Audit, IT Security, IT Governance, or IT Regulations (MAS and other Regulators)
• Have a good working knowledge of information security principles, techniques and standards
• Knowledge of the systems development lifecycle, information security, and IT management
• Soft skills - communication (written & verbal), client-centric, strong analytical & problem solving skills, team player
• Prefer banking or insurance industry experience
• A recognised degree in a Technology related field, such as Information Technology, Commerce/Business with major in Information Systems, Computer Science, or Engineering (Electronics/Computer), or related disciplines
• Recognised certification in an IT Risk or Business related field (desirable but not mandatory): CISA, CRISC, CISM, CISSP, PMP, CPA
• Minimum 3 years of relevant experience for Senior Associate
• Minimum 4 years of relevant experience for Assistant Manager
• At least 5-6 years of relevant experience for Manager