Share this Job

AVP/VP, IAM Solutions Architect

Location: 

Singapore, SG

Job Function:  Data & Technology
Job Type:  Permanent
Req ID:  14587

GIC is a custodian of Singapore’s Reserves and a Sovereign Wealth Fund to secure Singapore’s financial future. GIC is entrusted with a critical mission that impacts the lives of all Singaporeans. We are looking for the best talent to help us fulfil our commitment to the future of Singapore and its people.  

 

Technology Group
The Technology Group (TG) is a key enabler to keep our business moving forward and is constantly exploiting state-of-the-art information technologies to enhance GIC’s ability to be the leading global long-term investment firm. We aim to provide users with empowering and transformational capabilities, and to create an inclusive, innovative, and integrated work environment.

We are looking for a suitable candidate for AVP/VP, IAM Solutions Architect. The individual will report to an SVP, Cyber Security Engineering, which is one of the key functions under Cyber Security, Information, & Technology Risk (CSITR) Division of Technology Group.

 

Responsibilities:

  • Design, build, implement & integrate enterprise-class Identity and Access Management (IAM) systems and solutions
  • Drive the adoption of creative solutions to address complex, IAM problems
  • Identify, analyze, and resolve system design & development weaknesses for the resolution of complex problems related to identities, systems, access, accounts authentication, authorization, entitlements, and permissions
  • Troubleshoot, support, and resolve system incidents, problems, and changes, as required, and escalated by L2/3 teams and or other stakeholders
  • Identify and recommend improvement areas in existing enterprise security architecture to address evolving cybersecurity threats
  • Align and balance business requirements with cybersecurity and IT requirements, based on the organization’s risk appetite
  • Develop integrated security operating models and documentations to ensure operational efficiency, scalability, and sustainability
  • Act as a domain expert and trusted partner in CSITR; work closely with stakeholders in other groups on cybersecurity engineering related matters
  • Manage cybersecurity projects with virtual teams/vendors in a managed capacity/service and augmented staff models ensuring successful implementation to meet organisational objectives

 

Analytical/Decision Making Responsibilities:

The individual in this role must be able to understand and interpret identity and access management strategies and direction.  Further, the person must be able to bring together key tenets of Information Security to the IAM strategy and develop technical (low-level) security solutions that properly aligns.

 

Requirements:

  • Bachelor’s Degree in Information Technology, Computer Engineering or equivalent
  • Subject-matter expertise across all IAM topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures
  • Hands-on experience in technical design, implementation, and customisation of IAM Security solutions primarily in Identity Management area with products like Sail-point and working knowledge of broader IAM areas like Access management, Privileged Access management, Secrets management & CIAM
  • Strong understanding of Authentication & Authorisation concepts including technical design and implementations covering on-premises workload for applications and infrastructure as well as cloud computing workload on Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) models
  • Working knowledge of current IAM standards and protocols, including but not limited to SAML, OAuth, OpenID, SCIM and LDAP, as well as MFA mechanisms Additional working knowhow of any AM solutions like Okta, ForgeRock, IBM Verify would be advantageous
  • Scripting and coding skills with languages like VBScript, PowerShell, Perl, JavaScript, etc. and good understanding of REST API’s and JSON
  • Knowledge of DevOps/DevSecOps and CI/CD tools, including IaC (Infrastructure as Code), application containers, as well as IAM (Identity and Access Management) in AWS and Azure
  • Ability to produce low level design and delivery update documentation around IAM
  • Professional qualification in information security, such as CISSP / CISM / CEH and IAM tooling related certifications like SailPoint, CyberArk etc. will be advantageous
  • Must be able to work independently or with a team, under minimum supervision

Our PRIME Values

Our PRIME Values

GIC is a values driven organization. GIC’s PRIME Values act as our compass, enabling us to fulfil our fundamental purpose and objectives. It is the foundational bedrock which governs our behaviors, our decision making, and our focus. It informs both our long-term strategy as a firm, and the way we relate to our Client, business partners and employees. PRIME stands for Prudence, Respect, Integrity, Merit and Excellence.