Risk and Control Analyst

Key Responsibilities

Risk Management

. Conduct risk assessments and propose / implement risk management plans.

. Ensure visibility, escalation, and management of IT risks inherent in the delivery of technology services and day to day operations

. Review risk issues that are lodged in GRC tool timely and lapses are managed and risk assessed

. Collaborate with the Second Line of Defense (Tech Risk) to conduct periodic control self-assessment exercises.

. Identify emerging risks, conduct thorough risk assessments, and implement effective mitigation strategies.

Compliance and Audit

. Ensure compliance with IT policies and standards and regulations

. Coordinate IT audits and manage responses to audit findings

Collaboration and Communication:

. Facilitate IT Risk governance training and awareness programs for employees

. Promote a strong IT risk culture across the Technology division

Performance Monitoring and Reporting:

. Monitor key performance indicators and key risk indicators

. Report on IT governance performance to stakeholders in Risk Committees

. Highlighting and articulating inherent risks to senior management.

Requirements

Experience

. Diploma or Degree in Computer Science or Information Technology.

. 3 - 5 years of experience in Technology Risk ie. monitoring of IT Operations, Security, Risk and Compliance or audit.

. Familiar with MAS regulatory requirements including Technology related MAS notices, guidelines, advisories, PDPA

. Industry certifications like CISA, CISM, CISSP, CRISC and ITIL will be beneficial

Thanks, and Best Regards

Lini

Recruitment Consultant

R22108463