Digibank - Specialist, Identity and Access Management

Job content

Job Description:

We are living in dynamic times. Technology is reshaping how we live, and we want to use it to redefine how financial services are offered. Grab is the leading technology company in Southeast Asia offering everyday services to the masses. Singtel is Asia’s leading communications group connecting millions of consumers and enterprises to essential digital services. This is why we are coming together to unlock big dreams, and financial inclusion for people in our region is just one of them.

Get to know the Role:

• Responsible for supporting identity and user access management activities of Digibank (DB).
• Oversee privileged access management including release of privileged accounts during non-emergency and break-glass situations.
  

The day-to-day activities:

• Responsible for administration of user and privileged access which includes but not limiting to:
  
  
  • Provisioning and de-provisioning for onboard, offboard, transfer and other ad-hoc user changes; and
  • Explore self-help and automation solutions to support request management and entitlement review of user and privileged access management activities.
• Establish user access matrix and coordinate systems integration / onboarding process;
• Grant granular role-based user access changes in accordance to job functions;
• Maintain and enforce segregation of duties (SOD) on user access roles;
• Identify gaps and propose viable solutions to streamline existing user access management processes;
• Initiate user access reviews on a regular basis to ensure there are no orphaned / obsolete accounts or excessive privileges granted;
• Initiate periodic review of user access matrix to ensure job roles and underpinning access privileges are continually relevant;
• Manage privileged access management process to ensure that privileged accounts are released and secured based on authorized justification including non-emergency and break-glass situations; and
• Involved in tooling evaluation for user access provisioning and privileged access management.
  

The must-haves:

• Minimum 8 years of experience in identity & access management (IAM), technology risk and controls, information security management, IT audit and/or IT compliance function.
• Bachelor’s degree in Computer Science, Management Information Systems, Information Systems, or a related field/experience is required. Experience within financial services areas is preferred.
• Background in identity and access management, privileged access management, and cloud security architecture and engineering is preferred.
• Experience in security, risk, and compliance, specific to identify & access management in dealing with regulators and auditors.
• Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management and data protection
• Define project requirements and dependencies as and when required, to support application onboarding and provisioning, and familiarity with identity and privileged access management solutions.
• Familiarity with APAC regulatory requirements, especially MAS, on user and access management in finance and banking environment.