Job Description

Responsibilities

• Develop and maintain deep working knowledge of the end-to-end SDLC, including governance structure, decision authorities, sign-off points, escalation paths, and tools. Act as a single point of clarity on how SDLC governance operates across PMO, Architecture, IT Risk & Security, Application, Technology, and Operations teams, ensuring shared understanding and consistent application.
• Proactively assess alignment between documented SDLC standards and actual delivery practices, considering organizational culture, risk appetite, regulatory expectations, and delivery maturity. Clearly explain why governance controls exist, how they should be applied, and when flexibility is appropriate.
• Champion a quality- and risk-aware delivery culture, balancing governance rigor with agility, and helping teams navigate governance expectations without creating unnecessary friction.
• Implement and operationalize processes and controls related to SDLC, including but not limited to sign-off processes / workflow, checklists, templates, and procedures, managing / coordinating with the systems involved in the process.
• Assist IT audits / inspections related activities pertaining to SDLC governance and processes adherence.
• Works with project or implementation team to establish quality assurance plan, approach, and cadences.
• Works with project or implementation team to monitor adherence to SDLC governance, manage and track resolutions of any non-compliances discovered.
• Provide clear direction and leadership when resolving SDLC non‑compliances, conflicting stakeholder priorities, or ambiguity in governance interpretation, ensuring focus on outcomes that matter most to the organization, balancing speed, quality, risk, and regulatory compliance, and driving timely decision-making where trade-offs are required.
• Actively listen to delivery teams, stakeholders, and auditors to understand pain points, constraints, and improvement opportunities in SDLC processes, tools, and ways of working.
• Demonstrate strong ability to synthesize feedback, data, and observations into pragmatic, prioritized improvement recommendations.
• Facilitate constructive feedback loops (e.g., retrospectives, post-implementation reviews, audit debriefs) and translate insights into actionable enhancements to SDLC processes, governance artefacts, tooling, and delivery practices.
• Lead continuous improvement initiatives by evaluating effectiveness of existing processes and tools, piloting changes where appropriate, promoting and driving adoption through clear communication and change management.
• Design and deliver practical, role-based training and coaching, moving beyond awareness to build real capability and ownership within teams
• Represent IT delivery assurance and lead walkthrough of all SDLC related governance artefacts as required.

Requirements

• Minimum 10 years experiences in performing IT project management, test management, quality assurance, and/or IT audit functions.
• Strong proficiency and knowledge in good project management, test management, and software development practices.
• Strong analytical skill, detail-oriented, and result-driven, with ability to manage team.
• Strong ability to guide, and coach QA / project teams, and delivery stakeholders on SDLC expectations, quality practices, risk management, and compliance requirements, adapting guidance based on team maturity and context.
• Proactive and has good interpersonal, communication, and stakeholder management skills.
• Bachelor’s degree in computer science, information technology, or information system management
• Certifications in Project Management Professional (PMP), COBIT, CISA are highly preferred.
• Has good knowledge and working experience with SDLC collaboration tools (such as JIRA/Confluence) and IT Service Management. Good understanding & experience on administration / configurations of such tools are highly preferred.
• Has good knowledge on Agile, Lean Management, and DevOps practices
• Has good familiarity with Insurance Industry and relevant regulatory requirements, such as MAS TRM Guidelines, LIA/GIA Guidelines, and Cyber Security