Business Function
Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Job Summary
- Technology is key to enabling the DBS vision of being the leading bank in Asia.
- To meet the challenges arising from the ever evolving technological advancements and increasing sophistication and demands of customers, there is a need for deft Technology Risk Managers to ensure robust risk governance.
- As a member of the Level1 Technology Risk Management team, you will be responsible for driving IT risk management initiatives including risk governance, regulatory inspections, internal & external audits and thematic reviews across the functions.
Responsibilities
- AuditAccountable for managing internal, external and regulatory reviews/audits from audit planning, fieldwork (such as request for information (RFI), issue discussion, etc.), to reporting and closing meeting.
Assess regulatory changes (such as MAS, HKMA, CBIRC, OJK, RBI and FSC) impacting the technology platforms & drive risk mitigation programs with stakeholders.
Review risk findings with stakeholders to determine management actions and responsible for monitoring and validating the closure of management actions.
Present risk observations and management actions at departmental meetings.
- Risk ControlEngage and collaborate with technology stakeholders to proactively identify risks at a detailed technical level and drive remediation plans to ensure that risks identified are effectively mitigated.
Manage the risk and security related process improvements and quality programs by participating in research/advisory services, including capturing of relevant metrics and analysis.
Perform data analysis or procedure reviews to ensure compliance to bank security standards; Provide technical expertise/consultation for process improvement and quality assurance.
Provide timely and periodic update to management on risk and security matters.
Communicate and provide guidance of new risk policies and standards.
Requirements
- Degree in Computer Science, Engineering, Information Technology or related discipline from a recognized University with minimum 8-15 years of working experience in the Financial / Banking IT industry.
- Demonstrated experience in identifying, assessing and advising on technology risks.
- Excellent organizational, problem solving, interpersonal and operating skills to effectively drive the IT Risk agenda with IT functions.
- Have a strong control and process management mindset, constantly paying attention to details and have ability to perform deep-dive investigation and crunching for control and process issues.
- Strong communication skills - able to effectively communicate with IT senior management, as well as line staff
- Good technical competencies and exposure to IT application development, support and management.
- Knowledge of Information Security, System Resiliency & Availability, Software Development Life Cycle (SDLC), & Continuous Integration Continuous Deployment (CICD) practices and frameworks preferred.
- Knowledge of the Banking Act – Banking Secrecy, Bank's policy and guidelines, Information Security Policy, Anti-Money Laundering, Cyber Security Act, MAS Technology Risk Management Guidelines, MAS Outsourcing Guidelines etc.
- Professional Certification preferred – CISA/CISM/CISSP/CRISC/CGEIT.
Apply Now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognizes your achievements.