Risk Manager, Security Operations & Monitoring (Associate Director/Senior Associate)

  • Competitive
  • Singapore
  • Permanent, Full time
  • Bank of Singapore
  • 16 Nov 18

Risk Manager, Security Operations & Monitoring (Associate Director/Senior Associate)

At Bank of Singapore, we are constantly on the lookout for exceptional individuals to join our team. We promote a culture of openness, teamwork and fairness. Most importantly, we invest in our people through our programmes that develop them on both professional and personal levels. Besides attractive remuneration packages, we offer non-financial benefits and opportunities to develop your potential within OCBC Group’s global network of subsidiaries and offices. If you have passion, drive and the will to succeed, rise to the challenge today!

General Description

The primary responsibility is to support Technology Information Security Management Team Lead to provide efficient and effective risk management and governance for Technology-related areas for the Technology Information Security Office (TISO).
Main Duties

1. Governance:

  • Review security standards developed for technologies deployed in BOS and ensure the BOS standards are aligned with OCBC Group's security standards.
  • Engage stakeholders and service providers to formalize TISM processes, procedures and checklists.
  • Maintain oversight alignment and adherence to established TISM processes, procedures and checklists. This includes alignment to the Group's information security policies, guidelines and standards.
  • Manage and maintain oversight of service providers (including financials).
  • Track and review financials for outsourced service providers.
  • Manage audit issues and ensure that remedial actions are executed to address the underlying risks and timely closure of audit findings.
2. Security Projects:
  • Drive and manage security projects or initiatives under tight timeline.
  • User Project Manager for TISM projects to manage scope, solution, timeline and governance.
  • Work closely with IT PM and delivery teams to get projects delivered on time and within budget.
  • Build working relationship with stakeholders and to provide TISO Management with timely updates.
  • Be responsible for the success TISM projects.
3. Security risk assessment:
  • Security review of systems ensuring compliance to bank security standards, highlight security risks, and make recommendations to mitigate the risks.
  • Advice stakeholders on security gap remediation, track identified security gaps to closure and escalate potential delays to management in a timely manner.
4. Security Operation :
  • Manage the rule sets for SIEM (ie Arcsight , RSA Security Analytics) and DAM tool (ie. Imperva SecureSphere) to correlate events from various devices throughout the network and identify anomalies that require further investigation.
  • Use SIEM, DAM, UATM and other security tools to detect and respond to IT security incidents.
  • Act as SME for all questions related to the bank's SIEM, DAM, UATM implementation and Operations.
  • Manage life-cycle of the Bank's SIEM, DAM and UATM platforms including maintain hardware/software revisions, configurations, security patches, hardening, and documentation.
  • Guide Security Monitoring Unit (SMU) and CSOC (Cyber Security Operation Center) Security Analysts in security case management.
5. Cyber-security Incident Response Team (CSIRT):
  • Perform scheduled CSIRT duties, and support CSIRT Commander in the event of a security incident.
  • Investigate indicators of compromise (IOCs) provided by Cyber Threat Intelligence or the Cyber Hunter function.
  • Assist the CSIRT Commander in the event of a CSIRT incident.
  • Submit monthly management reports on risk related matters, Technology Risk Report, Department aligned with OCBC Group's security standards.
  • Support department initiatives and ad-hoc work as assigned - audit / regulatory inspection and request from the Head Office, etc.

  • The position of requires a minimum of 5 years working experience in IT security operation, management, audit or equivalent in the banking environment.
  • Familiar with security technologies and operational experience with SIEM (ie. ArcSight, RSA Security Analytics), DAM (Imperva SecureSphere) in an end user environment is preferred.
  • Possess strong knowledge and experience in Windows, AIX, MS SQL anti-virus, NIDS, firewalls and network equipment.
  • Able to articulate and/or develop Information Security principles, standards and best practices
  • Understand IT and IS processes/methodology e.g. ITIL, SDLC.
  • Familiar with regulatory requirements and have experience in applying or advising stakeholders.
  • Customer service focused. Ability to empathize with clients' needs and instil confidence that their issues will be resolved efficiently without compromising on controls requirements.
  • Self-driven and seek continuous improvement on existing process
  • Minimum Bachelor degree required or equivalent technical expertise.
  • Possessed one of the following professional certifications such as CISSP, CISA or CRISC.