Senior Officer, IT Risk Management

Job Purpose

The job holder coordinates IT division activities and operations to ensure efficiency, effective risk control, and full compliance with internal policies, regulatory requirements, and the bank's governance standards.

Key Accountabilities

1. IT Operational Risk Management & Control Assurance

Support the identification, assessment, and monitoring of IT operational risks across systems, processes, and ecosystem interactions.

Ensure effective risk mitigation plans are established, monitored, and executed in alignment with the bank's IT risk management process.

Perform independent control reviews to validate the design and effectiveness of IT controls, including change management, access management, and other IT operations.

Work with IT, Security, and Business stakeholders to ensure timely closure of risk issues, incidents, and audit findings.

Provide insights and recommendations to strengthen IT control maturity and reduce operational risk exposure.

2. IT Compliance & Governance Oversight

Ensure IT activities in operations comply with internal policies, regulatory requirements, security standards, and governance practices.

Support the development, maintenance, and communication of IT policies, procedures, and governance guidelines.

Monitor adherence to compliance requirements and report deviations or gaps to relevant stake-holders for timely remediation.

Coordinate with Internal Audit, External Audit, and regulators to ensure readiness, evidence quality, and effective response to findings.

Promote awareness and accountability for compliance across IT functions and ecosystem partners.

3. Cross-functional Coordination & Continuous Improvement in IT Risk & Compliance Practices

Coordinate with IT teams, business units, and ecosystem partners to enhance cross-functional risk and compliance practices.

Drive continuous improvement initiatives to standardize processes, uplift control maturity, and enhance operational efficiency within IT governance, risk management, and compliance.

Facilitate risk workshops, training, or communication sessions to strengthen risk culture and compliance awareness across the division.

- Support the implementation of governance tools, dashboards, and reporting mechanisms to enable data-driven risk management.

- Foster collaboration to ensure alignment of IT risk & compliance activities with enterprise-wide frameworks and strategy

Success Profile - Qualification and Experiences

Qualifications:

Bachelor's degree or higher in Technology, Computer Science, Finance, Economics, Banking, Business Administration or related fields.

Relevant professional certifications such as CISA, CISM, CGEIT, etc., are considered an advantage.

Intermediate English proficiency, with the ability to communicate and learn effectively, TOEIC 550 (expected level).

Experiences:

Minimum 3 years of relevant experience in IT operation, IT compliance, IT internal control, IT audit and IT governance within banking, finance, technology environments or Big4 firms.

At least 2 years of experience in implementing or driving continuous improvement initiatives, process standardization, IT Risk and Compliance management or operational excellence programs.

Experience working with cross-functional teams and ecosystems, with the ability to analyze, assess, and oversee risks across business and technology domains.

Prior experience in developing frameworks, policies, or risk/control methodologies is an advantage.