Context:
The GCIO Chief Control Office (CCO) team plays an important role in enabling the bank to operate within its risk appetite by ensuring efficient and effective risk and control management. We do this by providing operational risk and control expertise, specialist technical knowledge and a deep understanding of the businesses and functions we serve.
Key activities include implementation and oversight of the Group's Risk Management Framework, on going and targeted controls assessments, implementing and maintaining robust risk governance, and championing a proactive risk culture. GCIO CCO works closely with partners across all lines of defence and is responsible for maintaining positive relationships with our regulators and external partners.
Therole holder will be responsible for:
- Partnering with the GCIO CCO function to oversee the risk and control portfolio related to the services Singapore or consumes from the Group.
- You will be a leader within the GCIO Chief Control Office (GCIO CCO) Function that directly supporting Singapore
This will be achieved by:
- Acting as trusted advisor for senior management by partnering to manage their operational risk i.e., risk assessments, control environment, issues management, audits.
- Promoting accountable risk and control decision-making based on quality data and analysis, actively challenging poor, inefficient or excessive controls, related tasks and behaviours.
- Providing specialist risk and control knowledge and insights, leading efforts to continuously improve the control environment and monitoring of risk, including behaviours
- Advising and designing process and controls in a commercially viable, practical and effective manner.
- Identifying trends to anticipate future developments in the risk and control environment.
- Influencing and shaping the development and implementation of future-fit risk management and regulatory frameworks.
- Providing Senior Management with updates on any relevant changes to policy or projects related to operational risk that have an impact on their area of responsibility.
The role is part of a global team and will be expected to support and collaborate with other team members across multiple regions, as well as manage their portfolio while maintaining an acceptable risk profile.
Functional Knowledge
- 10 years hands on experience in Technology Risk Management, IT Audit, Information Security, or IT Compliance within the financial services industry.
- Strong understanding of IT general controls(ITGC), application controls, and infrastructure security.
- Strong knowledge and practical experience of at least one local technology regulation
- Familiar with other key technology standards/frameworks (NIST Cybersecurity, COBIT, ITIL)
- Previous experience of identifying and solving problems that have impact on your work or the wider business.
- Strong communication skills to influence and challenge stakeholders.
- Strong written, verbal and presentation skills to support board paper submissions.
- Flexible and adaptable, able to handle and prioritise competing demands in a fast-paced environment.
- Active industry recognized certificates will be an asset, e.g. CISA, CISSP, CRISC, CCSP etc.
