Job Purpose *
Responsible for supporting first-line defence risk management by ensuring compliance with banking laws, regulations, and internal policies, and by facilitating the identification, assessment, measurement, and management of operational and compliance risks across the Division/Department.
Key Responsibilities *
Analysis of gaps and Improvement of Control Environment
Review and perform analysis and highlight gaps/concerns or area of improvements for unit under purview.
Ability to articulate clearly the gaps/concerns to stakeholders/HOD and proposed attainable and operational efficient operational solutions.
Actively participate in risk initiative/plans and strategy to improve the control environment for unit under purview.
Initiate strong operational risk management practices
Ensure that the GC and GNFRM Policies and Procedures, laws/regulations/guidelines (including any updates), are communicated, to all staff within the units under purview.
Ensure internal Policies and Procedures and/or Standard Operating Procedures are updated by business unit under purview to address laws/ regulations/ guidelines issued, wherever relevant/ applicable;
Review and follow-up on any non-compliance (regulatory and operational) issues escalated within the respective units under purview for appropriate closure;
Execute the operational risk framework of the bank as per GNFRM policy and procedure and ensure data is accurately recorded in a timely manner in the SHARP system for reporting and record purpose. of record
For control gaps/ regulatory gaps/ compliance controls weaknesses identified, obtain agreement with unit responsible to ensure action plans (Control Issue Management - CIMs) are appropriate, prioritized, sustainable and that action plans are closed by the committed due date.
Work with business unit under purview and RCU, carry out the implementation of the RCSA and ensure that the CET is updated and complete with the relevant processes / requirements / laws/ regulations/ guidelines and tested accordingly.
With the support from RCU, provide on-going compliance and operational risk awareness training as required.
Provide guidance as needed to support the business in meeting their risk objectives
Complete and support any ad-hoc tasks assigned by supervisor.
Initiate strong compliance management practices
Ensure that the GC and GNFRM Policies and Procedures, laws/regulations/guidelines (including any updates), are communicated, to all staff within the units under purview.
Ensure internal Policies and Procedures and/or Standard Operating Procedures are updated by business unit under purview to address laws/ regulations/ guidelines issued, wherever relevant/ applicable;
Review and follow-up on any non-compliance (regulatory and operational) issues escalated within the respective units under purview for appropriate closure;
Discuss with and obtain approval from the HOD and RCU before escalating and reporting the regulatory non-compliance issues;
Support RCU to effectively implement and execute all the policies and procedures owned by Group Compliance within the division/department/branch to achieve sound compliance risk management practices and reporting
Support RCU in performing gap analysis for the new and/or updated legal and regulatory requirements and take appropriate action to closed the identified gaps.
Support RCU to effectively identify, manage and monitor compliance risk within the div./dept. using compliance risk tools
Conduct compliance controls self-testing in accordance to the methodology documented in Group Compliance Policy and Procedures, Group AMLCFT and TFS Policy, Group Sanctions Policy and Procedures, Group Watchlist Policy and Procedures.
For control gaps/regulatory gaps/compliance controls weaknesses identified, obtain agreement with unit responsible to ensure action plans (Control Issue Management - CIMs) are appropriate, prioritized, sustainable and that action plans are closed by the committed due date.
Support RCU and unit under purview in internal/external audits or GC reviews.
Obtain the Compliance Declaration Form from new employees (as and when they join) within the units under purview and retain the same for review by Group Compliance/GIAD/ regulators as and when they deem fit;
Complete and support any ad-hoc tasks assigned by supervisor.
To act as the liaison in relation to all compliance related matters within the Division/ Department;
To carry out the implementation of the RCSA programme within the Division/Department, and ensure that the RCSA is updated with the relevant legal and regulatory requirements and tested accordingly;
Employee Development
Comply with HR performance processes and meet internal Risk Controls Tester KPIs
Complete the required training assignment and ensure solid understanding of the framework, tools and system.
Support risk culture initiatives
Support RCO in ad hoc thematic/deep dive reviews on processes and controls for assigned portfolio.
Liaise with business support team (as and when required) to determine corrective action plan for gaps identified and work towards closing the gaps.
Promote a reverence for strong risk management by applying knowledge and understanding of business products, services and processes
Collaborate across various stakeholder groups, determine best methods of communication and establish escalation model
Promote guidance as needed to support the business in compliance with operational risk and compliance risk management framework
Any other responsibilities/tasks as assigned by the Management from time to time.
Job Specification *
Qualifications
(Basic Degree/Diploma etc)
A Bachelor’s Degree in Information Technology, Computer Science or equivalent.
Professional Qualification and/or Regulatory, Licensing requirements
Not Applicable
Relevant Work Experience
Minimum 5 years’ work experience with relevant experience of a risk/audit/compliance/ related role and of working within the relevant business/function preferred.
Required Competencies and Skills *
Competencies/Skills
(Essential to succeed in this job)
In depth knowledge of risk and control related matters relevant to the IT project/program management and monitoring
Understanding of how a bank operates front to back
Experience in audit / risk management / compliance and / or related business/function
Excellent communication skills in English both verbal and written.
Able to adapt well to changing demands, multi-task effectively and work autonomously
An understanding of anti-money laundering, countering financing of terrorism and targeted financial sanctions risk for financial institutions
About UsWith operations that span 15 different markets across the region, the opportunity to expand your experience, test your capabilities, and exhibit your resilience is ample. #teamCIMB is always keen to welcome the ones who are ready to make that very special difference – for themselves and the bank.
Skills Required
- A Bachelor's Degree in Information Technology, Computer Science or equivalent
- Minimum 5 years work experience in risk/audit/compliance related role
What We Do
CIMB Group is a leading ASEAN universal bank, one of the largest Asian investment banks and one of the world's largest Islamic banks. We are headquartered in Kuala Lumpur, Malaysia and offer consumer banking, commercial banking, wholesale banking, Islamic banking, and asset management products and services. As the fifth largest banking group in ASEAN, we have over 36,000 staff in 16 locations across ASEAN, Asia and beyond. CIMB Bank and CIMB Islamic Bank are members of PIDM.
.jpeg)
