VP/SVP, Cyber Auditor, Group Audit

DBS Bank Limited
Singapore, Singapore
05 Aug 2022
18 Aug 2022
Job Function
Industry Sector
Finance - General
Employment Type
Full Time
Business Function

Group Audit helps the Board and Executive Management meet the strategic and operational objectives of the DBS Group. We conduct independent checks to ensure that the Group's risk and control processes are adequate and effective. All our team members are highly sought-after professionals who work as trusted advisors to our clients, in all matters related to a company's internal controls.

Job Purpose

DBS Group IT Audit is setting the standard to audit the future of banking technology. Our 3-function IT audit team consists of Digital & Banking Technology, IT Infrastructure and Cyber Security. This position is open in the Cyber Security team in Singapore.

Reporting into Deputy IT Functional Audit Head, you are responsible for end to end audits, track audit issue closure, validate control effectiveness post remediation, continuous monitoring of the IT landscape, writes and speaks well at all levels. You will also support the audit function in continuous auditing activities to improve effectiveness and efficiency of the IT audit function. As Singapore is the Head Office to DBS Group, some travelling can be expected (10% to 15%) in this role.

Key Accountabilities

Cybersecurity audit work includes review of cyber security controls across IT Infrastructure and Application. As Cyber security expert, you will have responsibilities in assessing and monitoring the effectiveness and adequacy of the Bank's cyber defence control measures and operation processes.

  • Lead and/or undertake audit projects to provide reliable and independent assurance
  • Identify and assess potential risks in accordance with current regulatory and statutory requirements
  • Establish and build relationships with senior stakeholders to educate the business in the control framework and influence business processes
  • Define and develop Continuous Auditing requirements
  • Supervise and coach team members
Qualifications & Experience
  • Degree in Information Technology
  • Professional certification in CISA/CISSP/CEH/CCSP
  • At least 10 years of work experience in banking & financial institutions, technology or consulting industries
  • Practical hands-on experience in performing independent security assessment to IT infrastructure and application
  • Demonstrate strong understanding of the cyber security controls, operations and well-versed in the areas of application security
  • Ability to interpret cyber security vulnerabilities and provide recommendations according to industry security best practices
  • Knowledge of cyber-related government regulations (MAS, CSA, HKMA, RBI, FSI, etc) and compliance will be an advantage
Skills Requirements

Technical Knowledge
  • Digital Banking delivery channel adoption:
    • Internet, web hosting, mobile, Wi-Fi, multi-channel distribution
  • Mobile application development
  • Cloud Security
  • Cyber Security
    • Malwares, attacks & defences
    • Biometrics
    • Security operations & surveillance
    • Vulnerability assessment / Penetration testing
  • Infrastructure security & processes
    • Network devices (e.g. firewalls, switches and routers)
    • System & database platforms (e.g. Wintel, Unix, Mainframe, Oracle, MS SQL)
    • IT processes (e.g. Data Centre Operations, Change Management, Incident Management)
  • Authentication & authorisation controls
    • Multi-factor authentication
    • Biometric technology
Business Analyst Skills
  • Banking product domain knowledge acquisition
    • Treasury and markets, securities, finance, risk management and Islamic Banking
  • User requirements understanding
  • Application release functionalities validation
  • Security / control design assessment
  • Regulatory compliance
  • Data Analytics
  • Risk assessment particularly in regard to assessing the probability and impact of an internal control weakness
Development Approach
  • Agile project management
  • Rapid release management
  • Programming standards
  • Mobile application development
Apply Now

We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
  • You need to sign in to save