Team Lead (Director), Risk & Control (Technology)

  • Competitive
  • Singapore
  • Permanent, Full time
  • Bank of Singapore
  • 19 Jan 17

Team Lead (Director), Risk & Control (Technology)

At Bank of Singapore, we are constantly on the lookout for exceptional individuals to join our team. We promote a culture of openness, teamwork and fairness. Most importantly, we invest in our people through our programmes that develop them on both professional and personal levels. Besides attractive remuneration packages, we offer non-financial benefits and opportunities to develop your potential within OCBC Group’s global network of subsidiaries and offices. If you have passion, drive and the will to succeed, rise to the challenge today!

Reporting to the Head, Risk & Control (Technology) will support Technology Senior Management in identifying key Technology Risk areas, and plan for and oversee IT Risk Management initiatives to safeguard the Bank from key Technology Risk exposures.

Responsibilities
Team Lead, Risk & Control (Technology)

  • Drive internal Technology Risk Governance review to ensure its effectiveness through formulation of major relevant risk items and facilitate robust discussion between various internal stakeholders to assess risks and develop solutions to address or mitigate them.
  • Primary responsibility for delivery on Self Assessment of Risk / Risk & Control Self Assessment (RCSA) as well as Regulatory Risk Self Assessment (RRSA).
  • Drive continuous improvement of Technology Risk Management Framework and Processes.
  • Participate in the implementation of relevant management frameworks, including the implementation of Technology Policies / Standards & Guidelines
  • Actively contribute to the engagement with Internal and External Audit on annual inspections.
  • Work with various departments (including Technology, Information Security, Legal & Compliance) in responding to regulatory inquiries, requests for opinion as well as compliance assessments of regulatory IT guidelines.
  • Participate in due diligence and implementation of any business initiative that alters the risk profile for the bank's technology department, particularly those with external components and regulatory implications.
  • Provide analysis of requirements necessary to ensure the confidentiality, availability and integrity of information where it is processed, stored, or transmitted by the business and IT systems while balancing performance and cost factors.


Qualifications
  • Degree in an IT related discipline.
  • At least 8 years of Technology experience including 5 years driving programs in risk assessment, risk reduction initiatives, risk & awareness training programs, governance over IT policies and standards.
  • In-depth knowledge and experience in applying Technology Risk Management, IT Governance and Information Security management frameworks (COBIT, Risk IT Framework, ISO 31000, etc.).
  • Must have proven applied knowledge in information controls and audit methodology for business systems and data processing environments.
  • Experience in coordination of entity-wide IT functions during internal audit or regulatory inspections.
  • Knowledge of regulatory requirements of MAS, HKMA is a plus.
  • Strong ability to communicate with and manage key IT stakeholders at various levels within the organization, advise key IT stakeholders on pragmatic approaches to risk reduction
  • Strong written and verbal presentation skills.