At AIG, we are reimagining the way we help customers to manage risk. Join us as a IT Governance & Control Manager to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team.

Make your mark in IT

At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. Innovation in IT drives innovation across the organization.

How you will create an impact

AIG Singapore Information Technology is an integral part of AIG Singapore insurance business, supporting:

• Strategic business enablement, including digitalization and internal operational efficiency initiatives,
• Technology modernization effort to ensure latest best of bread applications and infrastructure patterns are getting adopted in the organization,
• AIG IT governance practices and ensuring its alignment with MAS technology risk management guidelines and AIG compliance processes.

This candidate is responsible for being the subject matter expert in the Singapore Information Technology for IT vendor governance, audits & compliance revues, information technology policies, Disaster Recovery and BCP management as well as review local Tech Risk Management posture across the country IT landscape. This candidate will work closely with senior management across IT, Legal, Compliance, Enterprise Risk Management, and Internal Audit in both Singapore and APAC office.

Information Technology Vendor management:

• Manages IT vendor contract register,
• Oversees IT service provider contract engagement, including vendor Risk Assessment and review service provider SLA on regular basis,
• Support Board Paper updates and approvals for material outsourcing arrangement.

Manage all AIG Singapore audit & compliance revue:

• First point of contact for all IT audit request (internal, external) and ensure timely communication and submission of artefacts to auditors,
• Act as a coordinator across the different IT functions (country, regional, global) to gather artefacts and perform initial review (sanity checks) prior submission to auditor,
• Track and manage timely remediation of a;; compliance and audit observations pertaining to IT.

Information Security policies & procedures:

• Evaluates, tests, monitors, and maintains information systems (IS) and cyber security policies, procedures and systems, ensure completeness and recommend enhancements,
• Ensures that Information Systems and cyber security plans, controls, processes, standards, policies, and procedures are aligned with Information Security and Cyber Security standards,
• Creates, implements and oversees identity management systems and access procedure (provisioning, de-provisioning, recertification) to meet specific security needs and compliance standards.

Disaster Recovery plan and testing effectiveness

• Coordinates Information Systems Disaster Recovery Plan updates and regular execution of DR test plan,
• Perform Business Impact Analysis (BIA) in conjunction with business teams to predict the consequences of disruption of a business function and gathers information needed to develop recovery strategies.

Information Technology Risks:

• Support the team in gathering information and preparing for technology risks related reporting and meetings, i.e., internal governance service review, regulatory interaction, etc.
• Support technology risk assessments/audits, identify potential gaps, create action plans and recommendations for mitigation.
• Track the actions until completion and ensure that senior management / committees within the region are kept up to date on the progress, including the coordination of exception/acceptance processes where relevant.
• Stay knowledgeable of laws, rules, regulations, and current advances in all areas of information technology concerning Singapore,
• Work with regional teams to understand / influence risk framework, represent local needs and help resolve challenges.

What you’ll need to succeed

• Experience in IT Governance & Risk, Compliance, Audit and/or InfoSec.
• Experience in reviewing IT controls, framework, policies and standards.
• Experience in understanding design and operating effectiveness of IT controls and industry related frameworks.
• Information risk and/or security qualification (CISA, CISSP, CRISC, CISM, CCSP or equivalent preferred).
• Knowledge of ISO, SOX, SOC, is preferred.
• Knowledge in 2 or more areas: Application Security, IT Governance, Asset Security, Threat/Vulnerability Management, BCP & DR.
• Has a good understanding of international standards on Technology Risk Management.
• Excellent time management and ability to oversee multiple processes, action plans and key stakeholders simultaneously.
• Excellent stakeholder management, communication (verbal and written), presentation and advisory skills.
• Drive to execute and ability to solve challenges independently as well as drive initiatives to completion.

#LI-RO1

Reimagining insurance to make a bigger difference to the world

American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

Welcome to a culture of belonging

We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.  If you believe you need a reasonable accommodation, please send an email to [email protected].  

Functional Area:

IT - Information Technology

Estimated Travel Percentage (%):

Relocation Provided:

AIG Asia Pacific Insurance Pte. Ltd.