Overview

Manager/ Senior Manager, Risk Management Jobs in Singapore, Singapore at IBFSG – The Institute of Banking & Finance Singapore

Title: Manager/ Senior Manager, Risk Management

Company: IBFSG – The Institute of Banking & Finance Singapore

Location: Singapore, Singapore

Background:

The Institute of Banking and Finance (IBF) is the national agency supporting workforce competency and transformation for Singapore’s financial services sector. Working closely with industry, government and training partners, IBF equips finance professionals with future-ready capabilities to sustain Singapore’s position as an international financial centre. Since October 2020, IBF has been appointed the Jobs Development Partner for the financial services industry by the National Jobs Council.

To keep the sector’s workforce relevant amid evolving industry trends, IBF drives a range of jobs and skills initiatives. These include career conversion programmes to reskill professionals, talent pipelines for emerging growth areas, and personalised career advisory for jobseekers exploring new roles or transitions into financial services. As the national accreditation and certification agency for financial industry competencies, IBF partners the industry to set competency standards and raise professional quality through the Skills Framework for Financial Services. IBF also works with government agencies, financial institutions and training providers to strengthen the learning and development ecosystem, and administers regulatory examinations on behalf of the Monetary Authority of Singapore, as well as industry examinations such as the Client Advisor Competency Standards and Financial Markets Regulatory Practices.

For more information, please visit our website: www.ibf.org.sg.

Key Responsibilities:

Play the lead role in:

Data Protection & Governance

  • Serve as one of the organisation’s Data Protection Officer (DPO) and ensure compliance with the PDPA and related requirements
  • Develop, implement and continuously improve data protection policies, procedures and contractual frameworks
  • Drive initiatives to achieve and maintain the Data Protection Trustmark (DPTM) certification
  • Advise business units on Data Protection Impact Assessments (DPIAs) and privacy-by-design best practices

IT & Cybersecurity Risk and Incident Response

  • Support the organisation’s enterprise risk management activities by creating awareness, sensitising and providing risk advisory to IT and business stakeholders on technology and cybersecurity risks, including identification, assessment, treatment and monitoring
  • Collaborate with business stakeholders to coordinate technology and cybersecurity incident response, including triage, stakeholder communications, notifications (where applicable), post-incident reviews and control enhancements
  • Coordinate with IT and business stakeholders to prepare and present periodic risk reporting (e.g., key risk indicators, major incidents, control effectiveness and remediation progress) to Management and relevant committees, and support risk appetite and governance discussions

Audit, Compliance & Governance

  • Act as the main liaison for external IT audits and drive timely closure of audit findings
  • Oversee IT audit follow-ups and strengthen internal controls to address identified gaps
  • Support governance reporting and ensure alignment with regulatory and organisational requirements

Support Division in:

  • Support business continuity and crisis management by implementing relevant frameworks and coordinating BCM readiness exercises.
  • Provide end-to-end secretariat support for the Management Risk and Audit Committees, including paper preparation, action tracking and timely closure of decisions.

Requirements:

  • Strong knowledge of the PDPA and data governance practices
  • Experience in risk management, audit/compliance, incident management and stakeholder engagement
  • Good understanding of IT and cybersecurity risk concepts, controls and practices (e.g., access control, secure configuration, vulnerability management, logging/monitoring, incident response and third-party risk)
  • Familiarity with relevant standards/frameworks (e.g., ISO/IEC 27001, NIST CSF, MAS TRM) is an advantage
  • Hands-on experience in IT security activities (e.g., system audits, vulnerability scanning, firewall rule reviews, system hardening and/or network architecture reviews) is an advantage
  • Familiarity with cybersecurity tooling (e.g., PAM, IAM and/or SIEM) is an advantage
  • Relevant certifications (e.g., CISSP, CISA, CISM, CRISC, Security+, CEH, GSEC) are an advantage
  • Knowledge of cloud security is an advantage
  • Driven, meticulous and with a strong eye for detail
  • Good written and verbal communication skills
  • Strong interpersonal and stakeholder management skills

Apply

Upload your CV/resume or any other relevant file. Max. file size: 800 MB.