Singlife is a leading homegrown financial services company, offering consumers a better way to financial freedom. Through innovative, technology-enabled solutions and a wide range of products and services, Singlife provides consumers coantrol over their financial wellbeing at every stage of their lives.
In addition to a comprehensive suite of insurance plans, employee benefits, partnerships with financial adviser channels and bancassurance, Singlife offers investment and advisory solutions through its GROW with Singlife platform. It also offers the Singlife Account, a mobile-first insurance savings plan.
Singlife is the exclusive insurance provider for the Ministry of Defence, Ministry of Home Affairs and Public Officers Group Insurance Scheme. Singlife is also an official signatory of the United Nations Principles for Sustainable Insurance and the United Nations-supported Principles for Responsible Investment, affirming its commitment to finding a better way to sustainability.
The merger of Aviva Singapore and Singlife was announced in September 2020 and created one of the largest homegrown financial services companies in Singapore in a deal valued at S$3.2 billion. It was the largest insurance deal in Singapore at the time. Singlife was subsequently acquired by Sumitomo Life in March 2024, one of Japan's leading life insurers, which valued Singlife at S$4.6 billion, making the transaction one of the largest insurance deals in Southeast Asia.
Role Purpose
Provide strategic leadership and operational ownership of enterprise Identity & Access Management Operations (IAM Operations) services including System Access Management, Privileged Access Management (PAM), Identity Governance & Administration (IGA), IAM platform operations and identity lifecycle management.
The role is accountable for ensuring secure, compliant and efficient identity services while driving automation, transformation and continuous improvement across the IAM ecosystem. The incumbent will lead teams responsible for user access operations, privileged access operations, IAM platform support and identity governance while ensuring adherence to regulatory, audit and internal security requirements.
The role is also expected to contribute technically through IAM solutioning, entitlement modelling, role engineering and access governance design to support digital transformation and enterprise onboarding initiatives.
This role is accountable for the operational management of IGA and PAM solutions, ensuring their ongoing effectiveness and continuity of operations.
Responsibilities
- Lead System Access Operations teams responsible for provisioning and deprovisioning activities and end-to-end Joiner, Mover and Leaver processes.
- Lead PAM operations including onboarding of systems and applications into CyberArk and management of privileged credentials, session monitoring and breakglass processes.
- Provide technical ownership and operational support for CyberArk and Saviynt platforms.
- Manage IGA operations including HR to AD integration and birthright access provisioning.
- Drive onboarding of additional applications into Saviynt as the IGA programme matures and automation coverage expands.
- Participate in IAM solutioning, entitlement design, role engineering and access model design for new applications and digital initiatives.
- Review and challenge application role and entitlement models to ensure least privilege principles are maintained.
- Lead and front audit activities, provide evidence and manage remediation activities.
- Manage 24x7 IAM operations and vendor performance.
- Advocate and educate identity hygiene and compliance to Singlife security policies and standards.
Additional VP-level Accountabilities
- Define and own the enterprise IAM strategy, operating model and multi-year transformation roadmap covering System Access Management, PAM and IGA capabilities.
- Own IAM financial planning including budget management, vendor contracts, licence optimisation and investment prioritisation.
- Act as the technology risk owner for IAM platforms and services, ensuring risks are identified, assessed, mitigated and reported appropriately.
- Ensure compliance with MAS TRM guidelines, FSM-N04 Cyber Hygiene requirements, internal policies and industry best practices.
- Provide regular executive reporting on IAM operational health, risk posture, audit status, project progress and strategic initiatives to the CISO, CIO and relevant governance committees.
- Drive IAM resilience planning including disaster recovery, business continuity and cyber recovery capabilities for IAM platforms.
- Establish IAM standards, policies and governance frameworks across on-premise, cloud and SaaS environments.
- Build organisational capability through succession planning, talent development and leadership coaching within the IAM function.
Requirements
- Bachelor's degree in Computer Science, Information Security, Information Systems, Engineering or a related discipline.
- Minimum 12 years of experience in Information Technology, Cyber Security or Identity & Access Management disciplines.
- Minimum 8 years of direct experience across IAM domains including System Access Management, Privileged Access Management (PAM), Identity Governance & Administration (IGA) and Identity Lifecycle Management.
- Minimum 5 years of leadership experience managing IAM teams, vendors or managed service providers.
- Proven experience managing enterprise IAM operations in highly regulated environments such as financial services, insurance or banking.
- Demonstrated experience leading IAM transformation and automation initiatives.
- Strong understanding of identity concepts including:
- Joiner, Mover and Leaver (JML)
- Birthright access
- Enterprise roles and role hierarchy
- Entitlements and fine-grained permissions
- Role Based Access Control (RBAC)
- Attribute Based Access Control (ABAC)
- Segregation of Duties (SoD)
- Access certification and recertification
- Machine and human identities
- Secret management
- Privilege Access Management
- Hands-on experience with CyberArk, Saviynt, Active Directory, Entra ID and identity integrations
- Good understanding of SAML, OAuth2, OpenID Connect (OIDC), LDAP and SCIM.
- Able to contribute to IAM solutioning, role engineering, entitlement modelling and access governance design.
- Experience supporting audit and regulatory requirements including MAS TRM, FSM-N04, Internal Audit and External Audit activities.
- Professional certifications such as CISSP, CISM, CyberArk or Saviynt certifications are highly desirable.