Risk Manger

Job Description

• Individual with ITrisk/audit experience preferably in Banking/FI domain.
• Bachelor's degree in IT, minimum 5-7 plus years of experience, industry certifications (CISA, CISM, COBIT foundation, etc) preferred.
• Relevant experience in executingRiskinitiatives within a techriskfunction, compliance or technology audit role
• Experience inleading programs for proactively identifying regulatoryriskexposureandpotential non-compliant areas
• Knowledge of APAC regulations & understanding of regulatoryriskmanagement preferred

• The role will sit within the APACRisk&Controls function of the bank, which works with Application Managers, EnterpriseControlfunctionsandCOOs across the line of businesses to ensure thatcontrolgaps are identifiedandremediated.
• You will oversee the effective implementation of the Bank'sRiskframeworkandGlobal Technology (GT) governance routinesandrequirements, using established toolsanddocumented procedures. This includes documentation to enable tracking, monitoring,andescalation of technologyriskrelated issues to management,andacting as an ambassador of theriskculture.

• Manage senior stakeholders communicationandreporting
• Developandsocialize potentialriskmitigation strategies
• Driveriskengagement & managementandissue identification; in particular E2Eriskmanagement includes ERP, RCSA, eRIC, SIAI, JDI, AIAI, RIAI etc.
• Drive QA (Quality Assurance) testing, Business Continuity for applications, Sustainability Programandnew toolset adoption with JIRA forRiskmanagement.
• Foster the Identify, Escalate, Debateriskculture
• Assess regulatory (eg MAS, HKMA, CBRC, OJK, RBI, etc) changes impacting technologyandoperationsanddrive relatedriskmitigation program with required stakeholders
• Identify opportunities for enhancing or streamlining execution ofriskmanagement processes; partner across multiple divisions to execute.
• Manage regulatory relationships, where relevant
• Collaborate across the GCIBT application groups,RiskLeadsandenterprise process owners (including Global Information Security) to respond to InternalandExternal Audits, Exams,andRegulatory/Clearing Inquiries & Assessments.
• Quality assuranceandGlobal Information Security related findings program oversight
• Assist businessandprocess owners with remediating the most significantrisks including Audit Issues, Self-Identified Audit Issues, Compliance Identified Audit Issues, Regulatory Issues
• Practiceandpromote goodriskcultureandriskmanagement within GCIBT, leading participation in technologyriskactivities