Discover your dream Career
For Recruiters

VP Specialist Technology Risk (Governance, Framework & Reporting), Risk Management Group

DBS Bank Limited Singapore
Posted 1 day ago Permanent Competitive
VP Specialist Technology Risk (Governance, Framework & Reporting), Risk Management Group
Business Function

Risk Management Group works closely with our business partners to manage the bank's risk exposure by balancing its objective to maximise returns against an acceptable risk profile. We partner with origination teams to provide financing, investments and hedging opportunities to our customers. To manage risk effectively and run a successful business, we invest significantly in our people and infrastructure.

Technology is key to enabling the DBS vision of being the leading bank in Asia. We are constantly challenged by ever changing technology landscape, increasing customer sophistication / demands and introduction of new / updated regulatory requirements. We need passionate Technology Risk Managers who play a high impact role as second line function in enhancing the bank's technology risk and cybersecurity posture. This includes identifying potential technology and cybersecurity risks associated with existing, evolving and new technology systems and business processes, assessing potential impacts and engaging with other technology leaders on the risk treatment options based on enterprise risk appetite. Risks and mitigation plans are reported to senior leadership for review and attention.

The Role

The incumbent is a driven, self-starter, who plays an active role working in a dynamic environment with the Technology risk teams and is expected to have analytical skills to assess information and identify potential risks, be inquisitive on risks and controls issues.
The incumbent is responsible for delivering effective governance forums on technology risks including tracking and reporting. The role involves conducting regular awareness training for staff on cyber, information and technology risks, including policies, standards and relevant topics and periodically publish technology risk awareness articles or create awareness campaigns.

Responsibilities
  • Formulate and maintain information and technology risk policies, standards and guidelines for the organisation, and work closely with the Technology stakeholders to enforce technology risk management policies and standards.
  • Review adequacy of technology standards and guidelines in alignment with the associated technology risks.
  • Analyse and identify emerging trends, hotspots, systemic issues and potential technology risks, including tracking and management reporting.
  • Analyse trends, anomalies and behaviours and work with technology stakeholders to design and implement technical IT risk measure that are relevant to the Lines of Business.
  • Use data driven approach to challenge both historical and proposed practices.
  • Partner with first line peers to succinctly frame and report on infrastructure and cybersecurity risks relative to risk appetite.
  • Responsible for supporting and delivering effective risk governance committees on technology risks including tracking and reporting.
  • Perform thematic second line assurance reviews, including short and targeted focused reviews for areas of topical and key concern.
  • Conducts regular awareness training for staff on cyber, information and technology risks, including policies, standards and relevant topics and periodically publish technology risk awareness articles.
  • Enhance the business' understanding of regulatory/compliance risk requirements and the implications to the organization.
  • Proactive in forging effective engagement with key stakeholders on risk management and governance matters.
  • Ability to work independently, prepare and write comprehensive reports for senior management on technology risk management activities and risk events for presentation to risk committees.
  • Ability to communicate complex technology risk concepts in a clear and concise manner.
  • Supports budgeting, administration and coordination with internal and external partners for technology risk related matters.
Requirements
  • Degree holder.
  • Minimum 12-15 years of working experience in relevant field. The role requires the individual to have more than 6 years of 2nd Line of Defence experience in a Financial institution.
  • Professional memberships and security certifications would be considered favourably (e.g., CISA, CISSP, CISM, CCSP, etc.):
  • Professional security or risk management certifications.
  • Certified Information Systems Auditor (CISA)
  • Certified Risk & Information Systems Control (CRISC).
  • Certified Cloud Security Professional (CCSP).
  • Certifications related to SRE such as SRE Practitioner.
  • Proficient and forward looking in identifying issues and risks and designing key controls and risk indicators.
  • Experience in risk frameworks, policy and standards implementation.
  • Ability to lead discussions with Line1.5 on reporting requirements and problem solve as required.
  • Strong proficiency in technical/product expertise and knowledge in relevant fields.
(1) Technical Experience
  • IT professional with good knowledge of technology platforms and systems in banks.
  • Experienced IS or risk professional with experience and exposure to Agile, DevOps, SRE and security.
  • Proficiency in risk assessment tools, data analysis, and reporting software.
  • Sound knowledge in regulatory requirements (e.g. MAS Notice 644, 655, and TRM guidelines) and industry standards/ frameworks such as ITIL, SANS, COBIT, NIST, ISO 27001/2, Cyber Security Act,
  • Banking Act, Personal Data Protection Act.
(2) Non-Technical Experience
  • Ability to create awareness campaigns with key messages to uplift technology risk culture of the bank.
  • Proven critical analytical, including and the ability to express a point of view supported by data (with both technical and non-technical audiences).
  • Adept at challenging and at the same time influencing Line 1 to make corrective actions.
  • Good planning and other project management skills, including strong organisation skills.
  • Must be solutions oriented; ability to work with all levels of management and staff.
  • Self-driven, passionate about hands-on learning on emerging technologies and its risks.
  • Self-starter, performance-oriented individuals.
(3) Work Relationship
  • Support the Head of Unit in discharging the responsibilities of the team.
  • Strong ability in knowledge sharing with peers.
  • Contribute as a member of Team and collaborate with fellow team members and technology managers including Line1.5.
  • Develop relationships with peer in the technology organisation.
Apply now

We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Job ID  WD65937
More Jobs From DBS Bank Limited
DBS Bank Limited
SVP/ VP, Technology Risk Management - Infrastructure, Risk Management Group
DBS Bank Limited
Singapore
5 days ago Full time Competitive
DBS Bank Limited
AVP, Risk & Control Specialist, Application, Group Technology
DBS Bank Limited
Singapore
3 days ago Full time Competitive
DBS Bank Limited
VP, Cybersecurity Audit, Group Audit
DBS Bank Limited
Singapore
5 days ago Full time Competitive
DBS Bank Limited
SVP / VP, Enterprise Architect, EASRE, Technology & Operations
DBS Bank Limited
Singapore
2 days ago Full time Competitive
DBS Bank Limited
VP, Business/Data Analyst Credit Risk, Risk Management Group
DBS Bank Limited
Singapore
3 minutes ago Full time Competitive
DBS Bank Limited
AVP/VP, Credit Analyst, Institutional Banking Group
DBS Bank Limited
Singapore
18 hours ago Full time Competitive

Boost your career

Find thousands of job opportunities by signing up to eFinancialCareers today.
More Jobs Like This