Brunei
Cambodia
Indonesia
Lao
Malaysia
Myanmar
Philippines
Singapore
Thailand
Veitnam
.png)
-Provide initiatives and support BU/FU on the technology/IT security risk identification, assessment and mitigation of business processes, new initiatives and outsourcing arrangements
-Plan, prepare, coordinate and execute Risk Assessment and Due Diligence on Service Providers pertaining to outsourced activities in accordance with IT Outsourcing Guideline.
-Evaluate and ensure adequate controls in the relevant business/ IT outsourcing projects in the respects of resiliency, availability, security and efficiency.
-Work with BU/FU in reporting operational risk events and establish root causes and appropriate action plans
-Conduct review of the KRI thresholds for technological/IT security items established by BU/FU to ensure relevancy and follow-up on action plans for KRI breaches
-Coordinate the branch control self-assessment and material risk assessment exercise on technology and IT security to identify and address control weaknesses and/or gaps
-Prepare relevant risk reports to Senior Management, Group Risk Management and Group Capital Risk Committee on matters relating to technology and IT security.
-Ensure protection of customer information and other critical information of all SG entities and effectiveness of Data Loss Prevention program.
-Ensure inter-entities IT information flow is appropriate.
-Liaise with HQ on implementation of technology risks framework, policies and methodologies.
-Facilitate protection against potential Cyber-attacks or related IT security threats.
-Ensure compliance to IT Outsourcing regulation.
-Ensure compliance to Clouding Computing regulation.
-Review and enforce TRM frameworks, policies and guidelines.
-Pursue industry best practices in technology management and applications including FinTech, RegTech and the respective mitigation controls.
Ensure check and balance for technology governance standards.
- Preferred level of Experience (by years/function/industry):
-Minimum 5 years’ experience in risk management, preferably with experience in technology risk management and fintech.
- Other skills required:
-Well versed with Technology Risk Management Guideline issued by NBC.
-Knowledge in operational Risk, liquidity and credit risk management will be an added advantage.
-Ability to establish good relationship and articulate key risk issues with stakeholders
-Have good written / verbal communication and presentation skills