A leading Investment Bank is looking for a senior Technology Risk & Cybersecurity professional to take ownership of risk governance across APAC. This is a strategic role with real visibility, working closely with senior IT and business stakeholders to shape and strengthen the region's technology risk posture.
What you'll be doing
- Own and evolve the regional Technology Risk Management framework
- Drive enterprise-level technology and cyber risk assessments (including third parties)
- Maintain and report on the regional risk profile to senior management
- Advise on cybersecurity, technology controls, policies, and compliance initiatives
- Act as the key point of contact for IT audits and regulatory interactions
- Track regulatory and technology changes and translate them into practical improvements
- Promote a high-risk and governance culture across the organization
What they're looking for
- 8+ years in technology risk, cybersecurity, GRC, or IT audit roles
- Strong grounding in industry frameworks (e.g., COBIT, NIST, ISO, ITIL)
- Hands-on understanding of IT, cyber, and data governance controls
- Experience operating in regulated environments, ideally in financial services
- Exposure to APAC regulatory landscapes (Hong Kong / Singapore, a strong plus)
- Proven ability to engage senior, non-technical stakeholders
- Relevant degree and recognised certifications (CISA, CISSP, CRISC or similar)
