Associate Director, Technology Risk Management
Full-time
Director/C-Level
9 months ago
This position will be pivotal for the development and implementation of an effective Technology Risk 2nd line of defense function providing risk overs..
This position will be pivotal for the development and implementation of an effective Technology Risk 2nd line of defense function providing risk oversight and advice.
The position will work in close collaboration with the local Technology function and the Group Technology Risk Management function.
Key responsibilities as a 2nd line function include:
- Provide support in implementing the Group/MAS technology risk framework and processes for governance, risk and control including review of current policies, guidelines, and procedures over technology risk.
- Implement effective proactive risk & control data analytics; define and build KPI and KRI reporting, and leverage existing metrics and risk dashboards to support effective qualitative and quantitative risk reporting.
- Proactively identify and effectively communicate emerging technology risks and opportunities to stakeholder at all levels of the organization.
- Regular reporting to Board and senior management on technology risk and security matters, including developments in the organization’s technology security risk profile in line with developments within and outside the organization, to ensure that the information security, cyber risks and threats are within the company’s risk tolerances.
- Increase awareness and enhance risk culture across the organization and provide day to day risk and control advise as trusted 2nd line subject matter expert.
- Champion and advocate the ownership of technology risk management, ensure risks are understood and managed within approved risk thresholds.
- Provide 2nd line reviews of risk assessments and business cases to identify key risks and gaps as required and provide assurance on the effectiveness of the technology and information risk controls and oversee the operationalization of control processes.
- Provide security and control review on major technology initiatives to ensure that Group/MAS Security standards and requirement are met, and risk mitigation are appropriately implemented.
- Support Technology Risk and Control Self-Assessment (RCSA) and effective risk management practices and recommend actions to be taken as needed via various risk committees for execution.
- Assist in IT related regulatory inspections and external audits and provide advisory when needed.
Official account of Jobstore.
