Risk Manager, Risk & Control - Technology (Associate Director)

  • Competitive
  • Singapore
  • Permanent, Full time
  • Bank of Singapore
  • 18 Jan 19

Risk Manager, Risk & Control - Technology (Associate Director)

At Bank of Singapore, we are constantly on the lookout for exceptional individuals to join our team. We promote a culture of openness, teamwork and fairness. Most importantly, we invest in our people through our programmes that develop them on both professional and personal levels. Besides attractive remuneration packages, we offer non-financial benefits and opportunities to develop your potential within OCBC Group’s global network of subsidiaries and offices. If you have passion, drive and the will to succeed, rise to the challenge today!

Bank of Singapore opens doors to new opportunities.
Start your career with Bank of Singapore as a Risk Manager in the Risk & Control team! !

The role serves as a has 2 main focus.
1. Data Protection Office
2. Advisory relating to Risk & Control for Technology departments.

Roles and Responsibilities:
Data Protection Office (DPO)
1. Assist the Head of DPO to develop and implement PDPA compliant policies.
2. Provide advice and guide the various Business Units to align with PDPA requirements.
3. Resolve queries and issues relating to data protection;
4. Handle customer and regulator queries.
5. Promote data protection awareness through training and written procedures.
6. Conduct investigation on matters and occurrences relating to personal data and undertake remediation action as required.
7. Monitor and share information to ensure that data protection policies and practices are consistently implemented.
8. Coordinate scrubbing of SG telephone numbers monthly before expiry of last scrubbing results.
9. Review and complete PDPA Breach /Incident assessments per stipulated timelines.
10. Submit PDPA Breaches to PDPC when required.

Risk and Control (Technology)
1. Support Team Head to drive technology risk management program for the Bank.
2. Collate and compile Key Risk Indicators (KRIs) for Technology Risk Reporting. Perform analysis of KRIs for emerging risk trends and recommend actions to address the risk.
3. Facilitate the implementation of technology / operational risk and compliance initiatives and policies.
4. Maintain risk register by engaging with IT stakeholders. Update data relating to risks, controls, key indicators and associated actions as required.

Reports to:
Head of Data Protection Office.
Head of Risk and Control (Technology).

Qualifications
1. University degree.
2. Strong communication and interpersonal skills.
3. Proactive, independent and able to meet deadlines.
4. Minimum 8 years working experience in banking operations, IT, risk and/or audit background preferred.
5. Adequate knowledge of the PDPA requirements.
6. Ability to identify risks and assess adequacy of controls as well as being able to make suitable recommendations for control enhancements are key requirements for this role.
7. Customer service focused. Ability to empathize with clients' needs and instil confidence that their issues will be resolved efficiently without compromising on controls requirements.
8. Strong understanding of local and regional technology regulations.