Your Browser is Not Supported
To ensure jobstore run smoothly, please use the latest version of the following supported browsers:
FIND YOUR 'BETTER' AT AIA
We don’t simply believe in being ‘The Best’. We believe in better - because there’s no limit to how far ‘better’ can take us.
We believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the life they live and the difference they make. So that together we can support even more people - including our own - to live Healthier, Longer, Better Lives.
If you believe in better, we’d love to hear from you.
About the Role
You will be responsible for the overall Cyber Security Operations (including IAM/EDR/DLP etc.), security posture (VMS, regular IVA, EVA and WAS) and baselines governance of AIA Singapore and local/group security projects deliverables.
What you will do:
What you should have:
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
FIND YOUR 'BETTER' AT AIA
We don’t simply believe in being ‘The Best’. We believe in better - because there’s no limit to how far ‘better’ can take us.
We believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the life they live and the difference they make. So that together we can support even more people - including our own - to live Healthier, Longer, Better Lives.
If you believe in better, we’d love to hear from you.
About the Role
This position is responsible for to providing consultation, professional advice, awareness/training on information security and key technology risk matters relating to the abovementioned geographical responsibilities, thereby contributing to building a strong information security risk culture cantered on people, processes and technology. The role will also coordinate regular governance engagements and being involved in technology-related audit engagements for AIA Singapore, and exercise professional judgment and assessments on the material to be provided by the various process and control owners for the audits.
What you will do:
Information Security & Technology Risk Metrics
Risk Assessments, Audit and Regulatory Management
Policy, Standards and Exception Management
What you should have:
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
AIA Digital+ is a Technology, Digital and Analytics innovation hub dedicated to powering AIA to be more efficient, connected and innovative as it fulfils its Purpose to help millions of people across Asia-Pacific live Healthier, Longer, Better Lives.
If you are hungry and driven to play an active role in shaping a better tomorrow, we want to hear from you. Because the work we do at AIA Digital+ makes a difference in the lives of millions of people, every day. We will equip you with the critical skills, tools and technology, and endless opportunities to learn, contribute and thrive in a dynamic and exciting environment.
If you want to shape a brighter future at AIA Digital+, please read on.
About the Role
Responsible for ensuring the security and integrity of AIA's information systems and cyber environment• Develop AIA's information technology security procedures and overall cyber security framework
• Evaluate, test, recommend, coordinate, monitor and maintain IT security policies, procedures and systems including access management for both hardware and software
• Design, implement and troubleshoot various information systems and cyber security software to identify security risks and exposures
• Determine the causes of security violations and suggest procedures to halt future incidents
• Conduct evaluation and testing of hardware and software for possible impact on system security
• Investigate and resolve security incidents such as intrusion, frauds, cyber attacks or data leakage
Build a career with us as we help our customers and the community live healthier, longer, better lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
Official account of Jobstore.
At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.
As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.
To get there, we need people with tech/digital/analytics expertise and passion to help develop positive, sustainable change through digitally enhanced experiences that will impact the lives of millions of people and create a healthier future for everyone.
If you believe in developing a better tomorrow, read on.
About the Role
Provide specialist support to drive the AIA Singapore’s Information and Cyber Security Awareness Programme, to meet the objectives of the MAS TRM Guidelines and MAS Cyber Hygiene Notice.WHAT YOU’LL BE DOING:
Assist in delivering training programmes to maintain high levels of information security capabilities of stakeholders in the four entities in scope (i.e Board members, EXCO/Senior Management, staff, agents, Tech staff, contract personnel, agents and third party service providers).
Establish security capabilities and awareness requirements through detailed gap analysis from various channels, such as interviews, past phishing exercise results and e-learning coverage.
Work with global Information Security function to manage the phishing exercises for staff and apply the rewards and consequence management based on the results of each exercise.
Drive the phishing exercises for our retail distribution force, working with Tied Distribution management to apply the rewards and consequence management based on the results of each exercise.
Support the planning and execution of cyber security training initiatives for the Board of Directors and Senior Management.
Work with the other ISG functions to create topical security awareness modules and training, such as for TPSA, Incident Management, Risk Registry, etc.
Oversee the delivery of security awareness for third party service providers with critical and high risk to AIA Singapore.
Support delivery of security campaigns to foster a high level of partnership and cyber hygiene knowledge of stakeholders such as staff and agents.
Support delivery of regular secure coding training, with gamification approaches, to elevate the attention and skillset of our IT teams/developers in the area of application security.
Explore in-house development or existing solutions with security competency vendors to gamify the security learning experience for all stakeholders to achieve a people-centric, people led security awareness programme.
Collaborate harmoniously and effectively with various internal business functions and Risk teams to evolve a highly positive risk and security awareness culture across the four entities.
Downward trend in cyber security incidents and data privacy related incidents arising from improved security capabilities amongst stakeholders
High take up rate and good response from stakeholders for post-transformed security awareness programme, in terms of security awareness solutions delivered
Increased proportion of staff and agents recorded as reporting the simulated phishing emails during the regular phishing/social engineering exercises
Improved productivity from ISG BAU services through completion of process automation initiatives
WE ARE LOOKING FOR SOMEONE WITH | YOU WILL HAVE:
Bachelor’s degree of Computer Science, Computer Engineering, or other related degrees.
Minimum 8 years of experience with at least 3 years’ of experience driving security awareness programme in major tech firms or regulated organization (e.g. Government, FIs).
Good conceptual knowledge of cybersecurity threats and processes.
Highly driven professional passionate in the world of cyber security and keenness to share knowledge to the wider audience in this area.
Hands-on experience in security awareness tools and solutions is a requirement.
Candidates who had undergone successful attempts at transforming processes through automation techniques, such as RPA, scripting are welcome.
Good to have but not mandatory - Information Systems Security professional certifications, such as CISSP, CISA, CRISC, CISM or CC.
Excellent Communication, Coordination and Interpersonal Skills. The communication network of the incumbent is expected to be internally within Technology Department (15%) and Enterprise Risk Management, Compliance, Internal Audit (10%), Business Departments (45%), Senior Management and Sub-Committees (5%),Group Technology and Group Information Security (10%) and external with Vendors and Service Providers (15%).
A team-player taking ownership and helping colleagues.
Analytical skills
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.
As pioneering innovators for over 100 years, we’re now transforming our organisation to be faster, simpler and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.
To get there, we need people with tech/digital/analytics expertise and passion to help develop positive, sustainable change through digitally enhanced experiences that will impact the lives of millions of people and create a healthier future for everyone.
If you believe in developing a better tomorrow, read on.
About the Role
You will be responsible for the overall Cyber Security Operations (including IAM/EDR/DLP etc.), security posture (VMS, regular IVA, EVA and WAS) and baselines governance of AIA Singapore and local/group security projects deliverables.WHAT YOU’LL BE DOING:
This role includes responsibilities of managing 3 team members and overseeing operations, subsidiaries, assigned POA over specific matters and/or other appointments such as Data Protection Officer
Maintain an oversight of all the alerts from FINTECH, MASNET, Group Cyber SOC for AIASG and provide support to incident response personnel to ensure all deliverables are met within SLAs.
Maintain an oversight of related security posture and baseline and ensure related vulnerabilities are remediated timely as per established standard to minimize risk exposures.
Drive local security projects and group security project facilitation.
Develop and maintain local incident response playbooks and other detection/response related standard operating procedures to ensure compliant to the MAS regulations.
Act for the incident response action approval chain and support any incident response obligation for third parties.
Respond to computer security incidents according to established response processes, leverages subject matter expertise where established processes do not exist.
Acts as a subject matter expert regarding CSIRT incident response processes from local perspective.
Provides guidance to other stakeholders during the incident response process and follow & track all the remediation actions till incident closure.
Chair local IMT (Incident Management Team) calls and keep senior management and stakeholder updates on the progress of cyber incident management.
Identify and manage potential and actual operational issues within the incident detection/response domain and take corrective action whenever required
Work as a liaison between the SOC Team, other departments, and upper management for AIASG and potentially local regulators
Manage relationships with our customers’ and third parties’ tech incident teams and frequently interact with client management for any security incident related queries.
Work closely with the Group SOC team to manage ongoing service delivery and onboarding of local process within the SOC alignment and compliant to the local regulations.
Level and type of budgetary or financial control of the position, responsible for budget of Information Security and Governance unit.
Other quantitative / qualitative measures, e.g. time, quality, feedback, etc., that are tied to the objective of the area of responsibilities.
Downward trend in cyber security incidents and less DP incidents.
Uplift Cyber Security process, controls and maturity level for Cyber Security Incident.
Support for the Cyber Security score in the annual MAS CRAFT report.
WE ARE LOOKING FOR SOMEONE WITH | YOU WILL HAVE:
Bachelor’s degree of computer science, computer engineering or other relevant degrees
Minimum 8 years of IT experience with at least 4 years’ of experience in cyber security incident handling in a regulated environment (e.g. FSI, government etc.)
Strong knowledge of cybersecurity incident management covering identification, containment, response, recovery and reporting
Sound knowledge of Cloud, Cyber Monitoring, Threat Hunting, and Cyber Threat Intelligence
Natural ability to take the lead and drive the investigation of complex security issues, with strong analytical and problem-solving skills
Self-driven professional interested in the world of cyber security
Standby for the serious security incident during weekend or off-working hours if necessary
Hands-on experience for the cyber security incident scenario preparation and tabletop exercise
Technical understanding of enterprise network, various components and designs and strong understanding of Operating Systems, Applications, Databases in both on-prem and Cloud environment, how they are exploited and how to defend
Good knowledge of conducting RCA for the incident
Information Systems Security professional certifications, such as CISSP, CISA, CISM, CSSP or Cloud related.
A team-player taking ownership and helping colleagues.
Excellent Analytical, Coordination and Interpersonal Skills.
Good communication skills and the communication network of the incumbent is expected to be internally within Technology Department (30%) and Enterprise Risk Management, Compliance, Internal Audit (15%), Business Departments (10%), Senior Management and Sub-Committees (10%),Group Technology and Group Information Security (20%) and external with Vendors and Service Providers (15%).
#LI-SC1
Build a career with us as we help our customers and the community live Healthier, Longer, Better Lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.
Official account of Jobstore.
If you don't have a Malaysian citizenship, but are living in Malaysia or if you are planning to move to Malaysia and are looking for jobs that can sponsor you, it is up to each individual employer on how it handles international candidates. We encourage you to read our blog post to help provide more information: 7 Easy Steps to Find Jobs in Malaysia As A Foreigner.
Have you tried following up? If you did not follow up with an email or phone call, how do you determine if the company received your job application? Enquire where they are in the review process and and then ask if they received your submission. While it would be great to receive a response from the company, sometimes it doesn’t happen. Take the initiative to follow to ensure your application has been received.
The period of the application process will vary, depending on the type of job you are applying for and your previous employment experience.
There are 6 position levels and each level can be associated with a salary range and different types of job titles. Jobs levels can be categorised into: non-executive, fresh/entry level, junior executive, senior executive, manager and senior manager.
Within Jobstore, there are hundreds of variations of jobs. Read through the job descriptions to find out about the typical responsibilities and employers for each job, so you can see what’s involved and who might employ you.