Information Security Officer (Regulatory & Policy)

Singapore

Hyphen Group aims to be Asia’s #1 trusted source of information and education on financial management using digital technologies to empower people to build healthier financial lives and to provide value to our partners   We have a culture of independence, transparency and trust.

We are looking for a passionate, detail-obsessed, and pragmatic person to work with us in the role of Information Security Officer. This role can work from Hong Kong or Singapore. 

If you are:

Then we would LOVE to work with you!

Here’s what you’ll be doing:

What can you expect from us?

Impact: We are actively empowering and connecting people to a better financial future. Join us if you want to help us achieve our mission. 

Work: We have a team of over 350 talented individuals in 6 markets who are hyper passionate about building innovative financial solutions and making an impact on people’s lives. 

Culture: We take our work seriously but don’t hesitate to keep things light. We can only create magic when we have a little bit of fun. 

Thrive: We launched in 2014 and fast-forward 7 years we now help over 10 million monthly users make the best financial decisions. Accelerate your career and become a pioneer in your field with a leading fintech company that seeks to push the boundaries of your imagination and is committed to growing your career. 

Reputation: We are backed by world-class organizations and companies and have raised over US$110 million from investors including Experian, Pacific Century Group, IFC - a member of the World Bank Group

 
EEO Statement 
Hyphen Group is an equal opportunity employer. We value, support and respect all individuals and is committed to maintaining an inclusive and diverse working environment. Decisions in hiring are based on business needs, requirements of the job and individual qualifications and shall not be influenced by any consideration of race, ethnic or national origin, religion, sex (including gender identity and/or expression), age, sexual orientation, marital status, parental status, disability, genetic information, political affiliation or other applicable legally protected characteristics.
 
Apply for this job
* Required
Resume/CV
Cover Letter
GDPR*

When you apply for a job on this site, the personal data contained in your application will be collected by Hyphen Group (“Hyphen Group” or “we”), a company registered and incorporated in Hong Kong and which can be contacted by emailing jobs@hyphengroup.io. Hyphen Group (the “Group”), is a group of companies that provide price comparison services as well as financial services, insurance products, communications and other products and services across Asia.

Your data is stored in a range of systems and formats. These include in your recruitment file, in the Group’s HR management system and in other IT systems, including the Group’s email system.

Hyphen Group processes a range of information collected from you. Subject to applicable law, this may include:

  • your name, address and contact details, including email address and telephone number;
  • your gender and date of birth;
  • details of your qualifications, skills, experience and employment history;
  • information about your current level of remuneration, including benefit entitlements;
  • details of your marital status and dependents;
  • candidate photographs;
  • details of your bank account;
  • Passport or other identification information; and/or
  • Information from compliance background checks.

Your personal data will be processed for the purposes of managing Jyphen Group’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, responding to and defending against legal claims, maintaining and promoting equal opportunities within the workplace and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under applicable Data Protection Laws as necessary for the purposes of the legitimate interests pursued by the Hyphen Group, which are the solicitation, evaluation, and selection of applicants for employment.

Who may have access to personal data?

Your information will be shared internally within the Group for the purposes of the recruitment exercise. This includes with members of the HR and recruitment team, interviewers involved in the recruitment process, managers in the business area with a vacancy, internal and external auditors and IT staff if access to the data is necessary for the performance of their roles.

Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Hyphen Group to help manage its recruitment and hiring process on Hyphen Group’s behalf.

Hyphen Group may share your personal data with third parties in order to, obtain pre-employment references from other employers, obtain employment background checks from third party providers and to obtain necessary criminal record checks.

How long do we hold your personal data?

Your personal data will be retained by the Group for so long as the Group determines it is reasonably necessary to evaluate your application for employment. If your application for employment is successful, personal data gathered during the recruitment process will be transferred to your personnel file and retained during your employment in accordance with the contract of employment and our internal privacy policy.

What if you do not supply your personal data?

You are under no statutory or contractual obligation to provide data to the us during the recruitment process. However, if you do not provide the information, we may not be able to process your application properly or at all.

Hyphen Group aims to be Asia’s #1 trusted source of information and education on financial management using digital technologies to empower people to build healthier financial lives and to provide value to our partners   We have a culture of independence, transparency and trust.

We are looking for a passionate, detail-obsessed, and pragmatic person to work with us in the role of Information Security Officer. This role can work from Hong Kong or Singapore. 

If you are:

  • Naturally balance between good enough and perfection.
  • Fanatic about ownership
  • Good at mentoring others,
  • A compassionate leader
  • If you have CISSP certification (or CCSP, CISA, or CRISC also acceptable)
  • If you have a minimum of eight years of information security governance, risk, compliance and/or technology risk management, preferably in both enterprise and startup environments. 
  • If you have proven how to design and implement information security roadmaps and frameworks and iterating on information security policies and processes.
  • If you can gently but firmly guide an organization into a positive security posture in regulated environments.
  • If you have expertise in information and cybersecurity frameworks, standards and regulatory requirements such as NIST, PCI, ISO 27001, SOC 2 as well as a good general understanding of data protection law
  • If you have experience in facing off to financial and insurance regulators and institutions 
  • If you are tech-savvy, love the cloud, and have successfully demonstrated an understanding of how modern architectures, pipelines and cloud deployments can significantly manage risk.
  • If you use checklists as a last resort, 

Then we would LOVE to work with you!

Here’s what you’ll be doing:

  • You will design and lead the information security management framework, strategies, governance, guidelines and best practices for the organization
  • You will quickly understand and assess the organization’s requirements regarding information security policy documents and operating procedures and then revise required documentation
  • You will design and deliver information security training to all teams across the organisation
  • You will project manage information security assessments conducted by regulators, auditors and partners, including financial institutions, insurance companies and credit bureaus 
  • You will be responsible for conducting third party information security risk assessments
  • You will be appointed as data privacy officer in one or more of the markets we operate in
  • You will work with our legal and compliance team to face off to the leading financial service companies and insurers as well as related auditors and regulators to drive commercially impactful integrations that push the boundaries of modern API and data integrations
  • You will build and maintain collaborative relationships across all levels of the organization, including with the senior leadership team

What can you expect from us?

Impact: We are actively empowering and connecting people to a better financial future. Join us if you want to help us achieve our mission. 

Work: We have a team of over 350 talented individuals in 6 markets who are hyper passionate about building innovative financial solutions and making an impact on people’s lives. 

Culture: We take our work seriously but don’t hesitate to keep things light. We can only create magic when we have a little bit of fun. 

Thrive: We launched in 2014 and fast-forward 7 years we now help over 10 million monthly users make the best financial decisions. Accelerate your career and become a pioneer in your field with a leading fintech company that seeks to push the boundaries of your imagination and is committed to growing your career. 

Reputation: We are backed by world-class organizations and companies and have raised over US$110 million from investors including Experian, Pacific Century Group, IFC - a member of the World Bank Group

 
EEO Statement 
Hyphen Group is an equal opportunity employer. We value, support and respect all individuals and is committed to maintaining an inclusive and diverse working environment. Decisions in hiring are based on business needs, requirements of the job and individual qualifications and shall not be influenced by any consideration of race, ethnic or national origin, religion, sex (including gender identity and/or expression), age, sexual orientation, marital status, parental status, disability, genetic information, political affiliation or other applicable legally protected characteristics.