Job Description

Are you ready to shape a better tomorrow?

AIA Digital+ is a Technology, Digital and Analytics innovation hub dedicated to powering AIA to be more efficient, connected and innovative as it fulfils its Purpose to help millions of people across Asia-Pacific live Healthier, Longer, Better Lives.

If you are hungry and driven to play an active role in shaping a better tomorrow, we want to hear from you. Because the work we do at AIA Digital+ makes a difference in the lives of millions of people, every day. We will equip you with the critical skills, tools and technology, and endless opportunities to learn, contribute and thrive in a dynamic and exciting environment.

If you want to shape a brighter future at AIA Digital+, please read on.

About the Role Uplift and transform Security Assessments practices, tools and processes

• 
  Experienced in performing Security and Controls Assessments with exposure to application security on on-premise and cloud platform solutions
• 
  Deep technical understanding of architecture and solutioning of Enterprise and Cloud security including products and capabilities.
• 
  Provide Subject Matter Expertise to projects teams on Security Design and Controls throughout the lifecycle of the project
• 
  To work in partnership with Business Units to provide advice on Infrastructure and Application Security related matters
• 
  Support in building security strategy, and ensure policy and standards reflect best practices on all aspects
• 
  Work collaboratively with key vendors and business partners to deliver effective security services for projects and ongoing BAU
• 
  Provide subject matter expertise for security of group infrastructure and group applications
• 
  Evaluate and identify cost effective, automated solutions to uplift current security assessment processes
• 
  Experience with deployment orchestration, automation and security configuration management is desirable
• 
  Positive attitude towards learning new skills as required by the organization

• 
  Degree holder in Computer Science or majoring in Information Systems, or related discipline.
• 
  5 years+ experience in Security\\Risk Assessments with a security focus, gained in another sizable organization
• 
  Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), ISO 27001 certifications preferred.
• 
  Strong technical skills in application development security practices
• 
  Practical experience assessing new technologies and applications
• 
  Excellent understanding of application security best practices, defensive programming techniques
• 
  Excellent team working and collaborative skills
• 
  Be adaptable, able to interact and build strong relationships with people from a diverse range of backgrounds.
• 
  Occasional travel is required.