Description
The primary responsibility of this position is to support the Head, Risk & Prevention to provide efficient and effective risk and control governance and management for Technology-related areas for the Head, Group Wealth Operations & Technology Office. The Risk Manager will assist with handling of technology / operational activities as assigned. As a senior position, the Risk Manager will be a deputy to the Head, Risk & Prevention.
Main Duties
A. Support HOD to drive technology risk management program for the Bank. This involves:
RISK MONITORING & REPORTING
(a) Review and perform analysis of the Key Risk Indicators (KRIs) to identify emerging risk trends, recommend actions to address the risk, and track the actions to completion.
(b) Facilitate completion of Risk Control Self-Assessment (RCSA) and Technology Regulatory Self-Assessment (TRSA) attestations across Technology. Support in the performance of risk assessments with stakeholders. Monitor Technology performance in risk and compliance management, including tracking of resolution of issues arising from regulatory compliance breaches, operational risk incidents, and audit / inspection issues.
(c) Analyse trends in data, interpret the data, identify issues, provide insights into potential contributory factors and draws sound conclusions.
(d) Maintain risk register by engaging with Technology stakeholders. Update data relating to risks, controls, key indicators and associated actions as required.
RISK REMEDIATION
(e) Work closely with O&T stakeholders to identify risks and provide advisory services to remediate risks.
(f) Work with Technology teams in the root cause analysis of operational risk incidents.
(g) Work with Line 2 (ORM, Compliance, DPO) on the reporting of regulatory compliance breach and operational risk incident.
PROACTIVE RISK MANAGEMENT
(h) Perform continuous risk assessments of the Technology environment to ensure that the design of controls is in-place and operating efficiently and effectively. Perform thematic reviews via key controls testing to enhance operational effectiveness and efficiency in Technology operations processes and procedures.
(i) Facilitate the implementation of technology / operational risk and compliance initiatives and policies.
(j) Create programs based on industry best practices and trend analysis to drive and increase staff’s awareness on O&T risk and service culture with the aim to fortify the bank’s risks and controls posture and improve overall service to our customers.
OTHERS
(k) Represent the assigned Technology department as their Operational Risk Partner (ORP) and perform the duties of ORP.
(I) Represent BOS R&P Technology in Group meetings.
Qualifications
- Minimum of 10 years working experience in a similar risk role within a financial institution.
- Ability to identify risks and assess adequacy of controls as well as being able to make suitable recommendations for control enhancements are key requirements for this role.
- Customer service focused. Ability to empathize with clients’ needs and instil confidence that their issues will be resolved efficiently without compromising on controls requirements.
- Strong understanding of local and regional technology regulations.
- Strong understanding of Line 2 Operational Risk Management frameworks and requirements.
- Strong report writing and analytical skills.
- Strong command of English for written and verbal communications.
- Minimum Bachelor Degree in Computer Science or equivalent.
- Professional certifications like CISA, CRISC, and similar certifications will be advantageous.