Job Description

About the job

GXS is a rapidly growing regional digital bank group, dedicated to revolutionizing financial services across Southeast Asia.

Backed by the powerful collaboration of Grab and Singtel, we are uniquely positioned to serve the everyday consumer and small business. Our mission is to drive financial inclusion and unlock big dreams across the region. Having successfully established our presence, we are now shifting our focus from ‘Build’ to ‘Scale’.

We believe in challenging conventions, as real impact is driven by real people. We are seeking curious and creative professionals who are ready to Own The Missionand help us shape the future of digital banking to be better, faster, and more accessible for everyone.

Get to know our Team:

Internal Audit is an independent function (3rd Line of Defence) within GXS Bank that provides objective assurance and advisory services to senior management. We use a systematic, disciplined and risk-based approach to evaluate and assess risks, processes, and internal controls, while aligning them with the Bank’s overall digital strategy. Our team covers multiple business and technology functions across the Bank’s ecosystem.

Get to know the Role:

Reporting to the Head of Technology Audit, you will be a key member of the Technology Audit team. As a Technology Auditor, you are primarily responsible for executing audits and risk advisory activities pertaining to Technology and Engineering (Cloud Infrastructure & Applications), Technology Risk Management, Cybersecurity, and Data Governance.

We seek a candidate who brings hands-on experience in AI-driven data analytics and automation to support the Internal Audit team within a fast-paced environment. You will keep abreast of MAS regulations on IT-related guidelines and cyber hygiene requirements.

The day-to-day activities:

• Plan and execute risk-based audit reviews and fieldwork, including work paper documentation, drafting audit findings, and participating in issue discussions with stakeholders.

• Ensure effective and timely execution of audit projects in accordance with audit methodology and timelines.

• Maintain well-documented audit work papers including supporting evidence in the GRC system.

• Proactively apply data analytics capabilities to enhance the effectiveness of Internal Audit.

• Build and maintain healthy relationships with management and stakeholders, acting as a trusted risk advisor.

• Support ad-hoc projects, special thematic reviews, or independent investigations as required.

The must haves:

• Bachelor's degree in Computer Science, Information Systems, or a related field from a globally recognized university.

• Minimum 8 years of experience in Technology Audit or Cyber & Security Risk Management.

• Professional certifications (e.g., CISA, CISSP, AAIA, or Cloud Security certifications) are highly preferred.

• Strong understanding of MAS Notices and Technology Risk Management (TRM) Guidelines.

• Hands-on experience with AI-driven data analytics and programming is a significant advantage.

• Familiarity with emerging technologies such as DevSecOps, Cloud, APIs, and service-oriented architectures.

• A collaborative team player with the ability to work independently.

• The courage to challenge risk-decisions from a 3rd Line of Defence perspective.

• Excellent communication, presentation, and report-writing skills.

• Based in Singapore, with the ability to travel for work if required.