Assistant Manager, Technology Governance

Life at U Mobile

We are Passionate, Innovative, Trustworthy, Team-Oriented & Fun-Loving.

At U Mobile, we are always on the lookout for great talents and passionate individuals to join our growing team.

Let's start your journey with an award-winning organization!

#UnbeatableCareerAwaits

Top Reasons To Join Us!

Awarded For

o Most Preferred Employers in Telecommunication Industry (2022, 2023 & 2024)

o Bronze Winner in Cross-Generational Workforce Engagement (2024)

o Gold Winner for Excellence in Workplace Culture (2021)

Comprehensive medical, dental, optical and insurance benefits

Flexi working hours arrangements

Staff Line & Device Subsidy

Smart Casual Attire

Child Parental Care Leave

Convenient location with access to public transport (Imbi Monorail/Bukit Bintang MRT)

Special employee discounts for selected F&B Brands

Role

The Day-To-Day Activities

1. Governance Framework & Policy Management

Develop, implement, and maintain technology governance frameworks, policies, standards, and guidelines.

Lead periodic policy reviews to ensure alignment with regulatory requirements and best practices (ISO 27001, COBIT, ITIL, NIST).

Facilitate governance forums, steering committees, and approval processes.

2. Risk & Compliance Oversight

Lead and coordinate technology-related risk assessments (IT, network, cybersecurity, cloud, operational).

Ensure timely remediation of risk treatments and audit findings.

Drive regulatory compliance activities (e.g., PDPA, MCMC, ISO certifications).

Identify emerging risks and evaluate effectiveness of existing controls.

3. IT Controls, Internal Audit & Third Party Audit Assurance

Establish, maintain, and monitor IT General Controls (ITGC), cybersecurity controls, and network controls.

Lead periodic internal control testing cycles and evaluate control effectiveness across IT and network domains.

Support internal audits by preparing evidence, coordinating with control owners, responding to audit queries, and ensuring timely closure of findings.

Coordinate third party audits (regulatory audits, ISO 27001 audits, security assessments, vendor audits) including planning, evidence management, walkthroughs, and remediation tracking.

Oversee governance of outsourced/managed services to ensure contractual and security compliance.

Provide assurance over critical technology processes such as access management, change governance, configuration standards, and incident response.

4. Change, Incident & Problem Governance

Oversee governance of technology changes, ensuring risk-based evaluation, testing, documentation, and approval compliance.

Review high-impact incidents and root cause analysis (RCA) reports to ensure governance and control adherence.

Monitor trends in incidents and changes to drive process improvements and prevent recurrence.

5. Technology Risk Reporting & Stakeholder Engagement

Prepare governance dashboards and reports for senior leadership, risk committees, and the Board.

Act as the primary liaison for auditors, regulators, and internal stakeholders on governance matters.

Conduct briefings and training sessions for IT, network, and cybersecurity teams on governance requirements.

6. Project & Investment Governance

Oversee governance compliance for technology initiatives and digital transformation projects.

Ensure security and risk assessments are integrated into project lifecycles.

Validate alignment of secure by design with enterprise architecture and governance frameworks.

7. Continuous Improvement & Governance Culture

Promote a culture of accountability, compliance, and governance excellence across technology functions.

Identify opportunities to streamline governance processes without compromising risk posture.

Lead awareness sessions and campaigns related to governance, policy compliance, and risk ownership.

About You

Education

Bachelor's degree in IT, Cybersecurity, Telecommunications, Engineering, or related field.

Professional Certifications (Preferred)

COBIT, CRISC, CISM, CISSP

ISO 27001 LA/LI

ITIL, PMP

Experience

7+ years in technology governance, IT risk, cybersecurity governance, or IT audit.

Experience working across IT operations, network engineering, and security teams.

Strong familiarity with ITGC, regulatory requirements, and audit processes.

Core Competencies

Strong analytical and governance mindset

Excellent communication and stakeholder management

Good understanding of IT and network technologies

Risk identification, evaluation, and reporting skills

Strong leadership and influence without authority

Personal Attributes

Detail oriented, structured, and organized

High ethical standards and integrity

Calm and composed under pressure (especially during audits/incidents)

Assertive yet collaborative with cross functional teams

Able to explain complex concepts in simple terms

#LA-RA1

What's Next

Once you have applied online, our team will review your application and due to a high volume of applications, only shortlisted candidates will be notified.