The IT Governance Manager supports the implementation and oversight of IT governance frameworks, ensuring compliance with internal policies and external regulations. This role focuses on managing system baseline hardening reviews, firewall rule reviews, user access reviews, quality assurance reviews and supporting Identity and Access Management (IAM) systems to maintain a secure and compliant IT environment and ensuring the alignment of IT practices with organizational goals and regulatory requirements.
Job Description
The IT Governance Assistant Manager supports the implementation and oversight of IT governance frameworks, ensuring compliance with internal policies and external regulations. This role focuses on managing system baseline hardening reviews, firewall rule reviews, user access reviews, quality assurance reviews and supporting Identity and Access Management (IAM) systems to maintain a secure and compliant IT environment and ensuring the alignment of IT practices with organizational goals and regulatory requirements.
KEY RESPONSIBILITIES
IT Governance Frameworks and Procedures
- Assist in developing and maintaining IT governance frameworks and procedures.
- Ensure compliance with regulatory requirements, industry standards and best practices.
Identity Access Management
- Coordinate regular / periodic company-wide user and privileged access reviews.
- Ensure access rights are only granted as required to support the role / business needs and timely revocation of accesses.
- Implement controls to mitigate user access related risk and issues.
- Support internal and external audit submissions for the IAM domain, where relevant.
IT Security Governance
- Ensure timely manual configuration baseline reviews.
- Ensure timely firewall rules review.
- Identify gaps against regulatory requirements and Group Policies and Standards and implement relevant controls / remediation actions.
Quality Assurance Oversight (2LoD)
- Manage and oversee the entire Quality Assurance Review lifecycle as 2LoD, plan, coordinate, and review artefacts submissions, as well as follow-up and tracking remediation.
- Ensure QA activities are executed in alignment with defined control objectives and timelines, supporting MAS TRM and internal governance standards.
- Ensure that all QA activities are conducted in a timely and efficient manner.
Process Improvement
- Identify gaps in IT processes and procedures and develop action plans to address these deficiencies.
- Assist in continuous improvement initiatives to enhance the efficiency and effectiveness of IT governance operations.
- Collaborate with cross-functional teams to streamline processes and ensure consistency across the organization.
Stakeholder Engagement
- Engage with key stakeholders to gather feedback and ensure alignment of IT governance initiatives with business needs.
- Provide guidance and support to staff on IT governance and process improvement practices.
QUALIFICATIONS / EXPERIENCE
- Bachelor’s degree or diploma in information technology, Cybersecurity, or a related field.
- Certification in IT Security related such as CISM, CISA, SSCP, CompTIA Security+.
- Strong project management, organizational skills, excellent analytical and problem-solving skills.
- Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels.
- Minimum of 3-4 years of experience in IT governance & assurance, identity access management, system hardening and firewall rule review or a related discipline.
- Proven track record of identifying and closing process and governance gaps.
- Strong understanding of IT governance frameworks and industry standards (e.g., ISO/IEC 27001, NIST), MAS TRM, Cyber Hygiene notice and related financial regulations
