Position Summary:
As a second line-of-defence IT function to identify, assess, monitor and report key risks as well as identify potential areas of improvement. This role will act as an advisor and domain expert on IT Risk matters. The ideal candidate will be a confident self-starter with strong interpersonal and organization skills, demonstrating the ability to exercise good judgement.
Key Responsibilites:
- Assist in the review and implementation of IT risk management frameworks, policies, processes, and procedures.
- Assist in the identification, prioritization, assessment, monitoring, and reporting of key IT risks.
- Assist in the conducting and reviewing of technology risk assessments with the 1st line-of-defence.
- Support IT risk-related projects and/or initiatives.
- Assist in the running IT Risk Management Committee.
- Assist in the reporting to Risk Management Committee.
- Managing the IT Deviation Process.
- Ensuring IT compliance activities are performed within stipulated periods.
- Proactively engage in establishing IT Risk awareness within the company.Monitor and assess compliance with laws, regulations, and policies (e.g., TRMG, Cyber Hygiene, CCoP, Payment Services Act, Personal Data Protection Act, etc).
Requirement:
- At least 7+ Years of experience in IT Risk Management, preferably within financial services.
- University degree in related discipline or equivalent industry related experience.
- Professional certifications in the field of IT Risk/Security (CISSP, CISA, CISM, CompTIA, SANS) would be beneficial.
- Preferably have a strong Technology/IT Security background.
- Good working knowledge of risk management and control concepts, constantly paying attention to details and have ability to perform deep-dive investigation.
- Stakeholder management and collaboration skills.
- Well-developed and effective written and verbal communication skills.
- Highly motivated and has a strong desire to learn and succeed.