Governance, Risk and Compliance Specialist
About AvePoint:
Securing the Future. AvePoint is a global leader in data management and data governance, and over 21,000 customers worldwide rely on our solutions to modernize the digital workplace across Microsoft, Google, Salesforce and other collaboration environments. AvePoint's global channel partner program includes over 3,500 managed service providers, value added resellers and systems integrators, with our solutions available in more than 100 cloud marketplaces. To learn more, visit www.avepoint.com.
At AvePoint, we are committed to investing in our people. Agility, passion and teamwork set us up to do our best work and foster a culture where you are empowered to craft your career, make an impact, and own (y)our future. Unleash the power of you!
About the role:
As a Governance, Risk and Compliance Specialist in the Cybersecurity (CySD) Division's Security Governance & Compliance (SGC) team, you will be a subject matter expert advising internal stakeholders on cybersecurity compliance requirements. You will be working closely with application teams and line 2.
Your scope of work includes:
- Writing internal cybersecurity policies and processes;
- Ascertain security compliance;
- Support IT/cyber security audits;
- Tracking and reporting of cyber risks.
Key responsibilities:
- Develop the culture of cyber security governance and risk management across the organisation, and ensure proper accountability in the management, tracking and reporting of cyber risks.
- Provide subject matter advice to internal stakeholders on cyber security requirements that the Authority is required to comply with, including internal policies and standards, as well as policies and standards from GovTech and Cyber Security Agency of Singapore.
- Review and establish ICT policies and processes controls, and conduct compliance checks.
- Support the CIO and CISO, and work with internal stakeholders to:
- Track and monitor cyber security initiatives to meet compliance requirements.
- Participate in consultation and conduct gap analysis against new requirements.
- Assess and seek waiver approvals for deviations and dispensations.
- Coordinate and facilitate IT/cyber security audits.
- Track remediation plans to address audit findings.
The ideal candidate has:
- Working experience in IT Governance, IT Audit, Cyber security or related field.
- Relevant certifications in IT governance, IT audit, cyber or data security (e.g. CISSP, CISM, CISA, CGEIT, etc.) preferred.
- Ability to work with cross-functional, multi-disciplined teams to institute and monitor security policies and procedures.
- Knowledge of Instruction Manual 8 and CSA Cybersecurity Code of Practice preferred.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
