Create Alert
Apply now »

AVP, Information & Technology Risk Manager (Governance and Risk Oversight)

Location: 

Singapore, SG

Job Function:  Risk & Performance Management Department
Job Type:  Permanent
Req ID:  17010

GIC is one of the world’s largest sovereign wealth funds. With over 2,000 employees across 11 locations around the world, we invest in more than 40 countries globally across asset classes and businesses. Working at GIC gives you exposure to an extraordinary network of the world’s industry leaders. As a leading global long-term investor, we Work at the Point of Impact for Singapore’s financial future, and the communities we invest in worldwide.

 

Risk and Performance Management Department (RPMD)
We work collaboratively across teams to help guard against blind spots and ensure that all relevant risks are considered and duly addressed.


Information & Technology Risk Management 


You will be a part of a team that independently protects the firm’s information technology assets, including business data, from external threats and operational risks, while supporting the firm’s digitalisation journey in a secure manner.

 

What will you do as an AVP, Information & Technology Risk Manager? 

 

The IT Risk Manager will play a key role within the Second Line of Defence (ITRM), supporting the organization’s technology risk oversight and governance framework. This role is responsible for conducting governance and oversight activities, managing audits, supporting training and awareness programs, and supporting the Governance and Risk Oversight (GRO) Lead in strengthening the organization’s technology risk posture.

The ideal candidate will possess strong knowledge of IT risk management, governance frameworks, and regulatory expectations, with the ability to collaborate effectively across technology and business teams to identify, assess, and mitigate technology risks.

 

Governance and Oversight

  • Conduct governance and oversight activities to ensure effective management of technology, information, and cybersecurity risks across the organization.
  • Support the GRO lead in developing and maintaining IT governance frameworks, policies, and standards.
  • Facilitate governance forums and prepare reports for senior management and risk committees.
  • Monitor compliance with internal policies, regulatory requirements, and industry best practices.

 

Audit and Assurance

  • Manage and coordinate internal and external audits related to technology risk, Information risk, cybersecurity, and IT controls.
  • Track audit findings and ensure timely remediation by technology owners.
  • Provide assurance on the adequacy and effectiveness of technology controls and risk mitigation measures.

 

Risk Assessment and Mitigation

  • Conduct/review risk assessments across technology domains to identify emerging risks and control gaps.
  • Propose risk mitigation measures and follow up with technology owners to ensure timely resolution.
  • Monitor Key Risk Indicators (KRIs) to assess control effectiveness and risk trends.
  • Support the development of risk dashboards and reporting metrics for management oversight.

 

Collaboration and Stakeholder Management

  • Work closely with other stakeholders to ensure alignment of risk management practices.
  • Provide advisory support to technology owners on governance, risk, and compliance matters.
  • Support cross-functional initiatives to strengthen the organization’s overall risk management framework.

 

What qualifications or skills should you possess in this role? 

 

  • Bachelor’s degree in Information Technology, Computer Science, Risk Management, or a related discipline.
  • Minimally 5 years of experience in IT governance, risk management, or audit within financial services or large organizations.
  • Strong understanding of IT risk frameworks (e.g., COBIT, NIST, ISO 27001)
  • Proven experience in managing audits, conducting risk assessments, and implementing governance frameworks.
  • Excellent communication, stakeholder management, and analytical skills.
  • Possession of industry-recognised certifications such as CISM, CRISC will be advantageous.

 

 

Work at the Point of Impact
We need to be forward-looking to attract the right people to help us become the Leading Global Long-term Investor. Join our ambitious, agile, and diverse teams - be empowered to push boundaries and pursue innovative ideas, share your views, and be heard. Be anchored on our PRIME Values: Prudence, Respect, Integrity, Merit and Excellence, which guides us in how we make our day-to-day decisions. We strive to inspire. To make an impact.

 

Flexibility at GIC
At GIC, our offices are vibrant hubs for ideation, professional growth, and interpersonal connection.  At the same time, we believe that flexibility allows us to do our best work and be our best selves.  Thus, our teams come into the office four days per week to harness the benefits of in-person collaboration, but have the flexibility to choose which days they work from home and adjust this arrangement as situational needs arise.

 

GIC is an equal opportunity employer 
As an employer, we passionately believe every individual brings with them unique diversity of thought and perspectives to meaningfully enrich perspectives of GIC teams to drive competitive performance. An inclusive environment yields exceptional contribution.

 

Learn more about our Risk & Performance Management Department here:

https://gic.careers/group/risk-performance-management/

 

Our PRIME Values

Our PRIME Values

GIC is a values driven organization. GIC’s PRIME Values act as our compass, enabling us to fulfil our fundamental purpose and objectives. It is the foundational bedrock which governs our behaviors, our decision making, and our focus. It informs both our long-term strategy as a firm, and the way we relate to our Client, business partners and employees. PRIME stands for Prudence, Respect, Integrity, Merit and Excellence. 

Apply now »