Senior Manager, Governance Risk & Compliance Solution and Technical Architect
Government Technology Agency of Singapore
Singapore, SG
5d ago

Your primary focus will be to lead the solution architecture for the Whole Of Government (WOG) Digitalised Governance Platform to level up ICT&SS governance capability consistently across WOG and to achieve economies of scale and cost-

efficiency. You will be responsible for the end-to-end architecture for a system and ensures the detailed design and development is aligned with the Enterprise Architecture of the Agency.

Success in this role will be demonstrated by your strong technical aptitude and ability to communicate in an effective and efficient manner to develop and deliver solutions for managing the risk of enterprise systems, applications and data through policies and controls, risk assessments, and issues and exception management.

What to Expect :

Provide technical expertise and contribute to establishing the direction for the IT architecture, standards, design and implementation approaches for the WOG Digitalised Governance Platform

Creates, evaluates and implements plans and design proposals for high impact IT solutions

Translate business requirements, including application resiliency requirements, into application architectural specifications

Provide architecture and technical support during production incidents

Drive high-profile and high-impact projects involving complex GRC and risk management challenges.

Perform gap assessments between Audit, Governance, security and risk leading practice frameworks and WOG and Agencies’ risk and control frameworks, and advise on remediating gaps.

Design and establish or transform Enterprise and Technology risk management, governance, and compliance programs based on WOG and Agencies’ business structures, strategies, and priorities.

Advise on, develop, and implement processes around risk identification, assessment, and remediation, including issues management, exception management, vendor risk management policy management, and security incident and vulnerability response.

Advise on, and assist clients to implement GRC platforms and solutions.

Collaborate and lead meetings with diverse high-level stakeholders, including C-suite, IT operations, system architects, security professionals, and business leads.

Develop training materials and other communications to increase employee understanding and awareness of security and risk issues.

Translate business requirements into technical requirements.

Communicate GRC technology capabilities into business terms for executive stakeholders

How to Succeed :

Graduate Degree preferably in IT, software and computer engineering.

Min 10 years of design / implementation / consulting experience with distributed applications - must have a minimum of 3 years hands-

on experience as a tech lead and system architect (i.e. system design, performance tuning, and system prototyping & maintenance), preferably with experience in implementing and deploying large-

scale Technology Governance, Risk and Compliance products / solutions.

experience designing and implementing .Net and / or J2EE applications. Must possess excellent data modelling and SQL skills.

Solid understanding of Server-side, .Net and / or Java development, Service Oriented Architectures, web services, RESTful API and public web sites / e-services development.

RSA Archer certification

Experience integrating GRC platforms with other security tools

Experience with security and risk frameworks (e.g. NIST Cybersecurity Framework, ISO 27001, ISO 31000, NIST 800-53, NIST 800-30, and / or PCI))

Management consulting experience.

Agile software delivery methodology experience

Experience with MetricStream, OpenPages, or RSAM is also relevant but not required

Archer skills such as : oData Feeds

oNotifications

oWorkspaces, Dashboards, iViews, Reports

oApplication Builder

  • Archer version 6.x (the current version 6.6)Strong interest in IT risk, data privacy, cyber security, emerging technologies, and related topics
  • Strong interest in IT risk, data privacy, cyber security, emerging technologies, and related topics

    Working knowledge of software development tools and methodologies

    Able to independently analyze and identify comprehensive solutions considering all functional implications while developing a workable solution

    Team player with strong organization and people handling skills

    Strong in writing, presentation and stakeholder management

  • Permanent
  • Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form