Jobfoundry
Jobfoundry
DBS Bank

SVP, Head of Non-Human Identity Policy, Information Security Services, Group Technology

DBS Bank
BusinessSingapore - EastFull-time3 weeks ago
Apply Now

About the role

AI summarised

The SVP, Head of Non-Human Identity Policy leads the development and implementation of non-human identity policies and strategies within a major bank's Information Security Services division. This role oversees the governance of machine identities, service accounts, and automated credentials to ensure robust security posture and regulatory compliance.

BusinessFull-timeGeneral

Key Responsibilities

  • Develop and maintain the non-human identity policy framework, including standards, guidelines, and procedures.
  • Lead the strategy for managing machine identities, service accounts, and automated credentials across the enterprise.
  • Collaborate with cross-functional teams to integrate non-human identity controls into existing security architectures.
  • Define and monitor key risk indicators (KRIs) and key performance indicators (KPIs) for non-human identity management.
  • Provide subject matter expertise on non-human identity risks and controls to senior management and business units.
  • Drive continuous improvement of non-human identity processes through automation and technology enhancements.
  • Ensure compliance with regulatory requirements and industry best practices related to identity and access management.
  • Manage a team of identity security professionals, providing guidance and development opportunities.

Requirements

  • Minimum 15 years of experience in information security, with at least 8 years in identity and access management.
  • Deep understanding of non-human identity concepts, including service accounts, API keys, certificates, and secrets management.
  • Proven experience in developing and implementing security policies and frameworks in a large financial institution.
  • Strong knowledge of regulatory requirements such as MAS TRM, GDPR, and SOX as they relate to identity management.
  • Excellent leadership and stakeholder management skills, with the ability to influence at all levels.
  • Strategic thinker with the ability to translate business needs into security requirements.
  • Strong analytical and problem-solving skills, with attention to detail.
  • Excellent verbal and written communication skills.
  • Bachelor's degree in Computer Science, Information Security, Business, or a related field.
  • Professional certifications such as CISSP, CISM, or CRISC are preferred.