Your primary focus will be to lead the solution architecture for the Whole Of Government (WOG) Digitalised Governance Platform to level up ICT&SS governance capability consistently across WOG and to achieve economies of scale and cost-
efficiency. You will be responsible for the end-to-end architecture for a system and ensures the detailed design and development is aligned with the Enterprise Architecture of the Agency.
Success in this role will be demonstrated by your strong technical aptitude and ability to communicate in an effective and efficient manner to develop and deliver solutions for managing the risk of enterprise systems, applications and data through policies and controls, risk assessments, and issues and exception management.
What to Expect :
Provide technical expertise and contribute to establishing the direction for the IT architecture, standards, design and implementation approaches for the WOG Digitalised Governance Platform
Creates, evaluates and implements plans and design proposals for high impact IT solutions
Translate business requirements, including application resiliency requirements, into application architectural specifications
Provide architecture and technical support during production incidents
Drive high-profile and high-impact projects involving complex GRC and risk management challenges.
Perform gap assessments between Audit, Governance, security and risk leading practice frameworks and WOG and Agencies’ risk and control frameworks, and advise on remediating gaps.
Design and establish or transform Enterprise and Technology risk management, governance, and compliance programs based on WOG and Agencies’ business structures, strategies, and priorities.
Advise on, develop, and implement processes around risk identification, assessment, and remediation, including issues management, exception management, vendor risk management policy management, and security incident and vulnerability response.
Advise on, and assist clients to implement GRC platforms and solutions.
Collaborate and lead meetings with diverse high-level stakeholders, including C-suite, IT operations, system architects, security professionals, and business leads.
Develop training materials and other communications to increase employee understanding and awareness of security and risk issues.
Translate business requirements into technical requirements.
Communicate GRC technology capabilities into business terms for executive stakeholders
How to Succeed :
Graduate Degree preferably in IT, software and computer engineering.
Min 10 years of design / implementation / consulting experience with distributed applications - must have a minimum of 3 years hands-
on experience as a tech lead and system architect (i.e. system design, performance tuning, and system prototyping & maintenance), preferably with experience in implementing and deploying large-
scale Technology Governance, Risk and Compliance products / solutions.
experience designing and implementing .Net and / or J2EE applications. Must possess excellent data modelling and SQL skills.
Solid understanding of Server-side, .Net and / or Java development, Service Oriented Architectures, web services, RESTful API and public web sites / e-services development.
RSA Archer certification
Experience integrating GRC platforms with other security tools
Experience with security and risk frameworks (e.g. NIST Cybersecurity Framework, ISO 27001, ISO 31000, NIST 800-53, NIST 800-30, and / or PCI))
Management consulting experience.
Agile software delivery methodology experience
Experience with MetricStream, OpenPages, or RSAM is also relevant but not required
Archer skills such as : oData Feeds
oWorkspaces, Dashboards, iViews, Reports
Strong interest in IT risk, data privacy, cyber security, emerging technologies, and related topics
Working knowledge of software development tools and methodologies
Able to independently analyze and identify comprehensive solutions considering all functional implications while developing a workable solution
Team player with strong organization and people handling skills
Strong in writing, presentation and stakeholder management