Position: IT Risk Officer
Employment Type: 1-year Agency Contract (Highly Renewable)
Location: Changi Business Park
Service Offering
- Support the rollout of IT risk management strategy, framework and standard(s) in Asia
- Manage day to day IT Risk management activities in Asia including:
- Maintenance of the central risk register
- Tracking of risk mitigation plans and
- Follow up on risk remediation and/or mitigation plans
- Responsible for preparation of risk reporting to IT Risk Management Forum as well as Operational Risk Committees in Singapore and Hong Kong.
- Perform regulatory (MAS and HKMA) and security related assessments, review technical control effectiveness, identify gaps and follow up on actions
- Perform and execute internal control plans
- Review application security concept design as part of project implementations
- Work with external and internal audit to support fieldwork and tracking of IT related audit items
- Handle routine security related tasks e.g. password management, review of requests
- Drive a positive risk culture through training, communication and collaboration
- Prepare materials for periodic IT Risk Awareness trainings
IT Risk Management
- Maintain the central risk register for Asia
- Support and assist risk owners to develop risk mitigation/remediation strategies for High, Medium and Low risk items
- Maintain oversight of risks mitigation / remediation plans of High, medium and Low risk items
- Work closely with IT Project Managers to identify, mitigate and treat residual risks arising from projects
- Collaborate with Information Security function to support implementation and/or mitigation of Cyber risks
- Prepare risk reporting materials to be presented at IT Risk Management Forum and Operational Risk Committees
- Perform Internal Control validations and highlight exceptions for remediation
- Track, monitor and report on status of Controls
- Provide IT risk awareness trainings
- Support IT teams in responding to external and internal audit queries. Review audit reports and provide audit responses
- Track audit remediation plans to ensure timely and proper closure of IT audit points
Job Requirements:
- Min. 5 years of experience, in the areas of Information Technology, Risk Governance or Control, Security or Audit related functions
- Banking experience, preferably in Wealth Management. Sound understanding of various business functions
- Strong technical skills. Experience in IT delivery or implementation and having a good understanding system design is a plus
- Independent worker, team player
- Preferred certification: CISSP, CISA
If keen, kindly forward your CV to [email protected]
Tangspac Consulting Pte Ltd
#03-02 The Octagon, 105 Cecil Street, Singapore 069534
EA Personnel Name: Olsem Stefanus Emmanuel
EA License: 07C3635 | EA Registration: R2094432