Manager, Risk Reporting, Risk Management

Posted 12 Days Ago
Be an Early Applicant
Hiring Remotely in Malaysia
Remote
Mid level
Other
The Role
Manage technology and cyber risk oversight including incident review, assessment, escalation, remediation tracking, and closure. Develop and strengthen risk frameworks, policies and methodologies. Provide independent advisory on technology, cyber, information security, third-party technology, data protection and operational resilience risks. Lead risk awareness, tooling and processes, and provide tactical and strategic leadership to team members.
Summary Generated by Built In

Responsible for managing the Bank’s technology and cyber risk oversight, with a strong focus on ensuring that all reported technology and cyber incidents are independently reviewed, properly assessed, tracked to completion and escalated where required. The role is also responsible for planning and conducting technology risk assessments, strengthening technology risk frameworks, policies, methodologies, processes and tools, and providing independent advisory, challenge and assurance on technology, cyber, information security, third-party technology, data and operational resilience risks.

Responsibilities
  1. Technology and cyber incident oversight: Ensure all reported technology and cyber incidents are reviewed, assessed, escalated, tracked and closed appropriately.
    • Review incident submissions for completeness, assess business and risk impact, validate root cause and remediation adequacy, monitor ageing and overdue actions, and escalate material or recurring issues to management and relevant risk committees.
    • Maintain clear oversight of the full incident lifecycle from reporting, assessment and escalation to remediation follow-up and closure, ensuring that incidents are not treated as closed until required actions and control improvements are sufficiently addressed.
  2. Risk governance, framework and policies: Develop, maintain and ensure effective implementation of risk frameworks and policies.
    • Develop and refine the Bank’s risk appetite and tolerance statement (as and when required) and ensure continuous monitoring to detect any breach and escalate to management.
    • Liaise and maintain networking with other organizations, locally and internationally, and conduct continuous benchmarking or research to keep abreast with the latest risk management practices/standards and regulatory policies.
    • Develop, maintain and enhance the Bank’s technology risk management framework, policies and methodologies, including requirements relating to cyber risk, information security, IT governance, system resilience, data protection, cloud adoption and third-party technology risk.
    • Provide independent oversight and challenge on technology-related risk assessments, control design, remediation plans, risk acceptances, technology change initiatives, outsourcing arrangements and material technology incidents.
  3. Risk culture and outreach: Promote the development of risk knowledge among staff to build a strong risk management culture.
    • Raise awareness on importance of risk management among Bank staff and develop financial risk management capabilities amongst departmental risk officers (DRO).
    • Promote technology risk awareness among Bank staff and departmental risk officers, including understanding of key cyber threats, technology control expectations, incident escalation, third-party technology risk and secure use of systems and data.
  4. Risk tools and processes: Develop, maintain and ensure effective implementation of tools and processes. 
  5. Risk analysis and advisory: Provide an independent technical and advisory view of related risks, from an enterprise perspective with the objective of adding value, strengthening, and improving the Bank’s operations through risk mitigation proposals to various risk committees in a timely and effective manner.
  6. Provide tactical and strategic leadership to team members through mentoring staff to meet their corporate and personal goals.
Qualifications

Academic Qualifications: 

  • Degree in Information Technology, Economics, Accounting, Finance, Mathematics, Statistics, Law, Engineering, Business Studies etc. 
  • Post-graduate degree or professional certification in Technology Risk, Information Security, Cybersecurity, IT Audit or Risk Management is an added advantage.

Experience: 

  • Preferably minimum four years in the Bank or industry experience in technology or cyber incident review, incident lifecycle management, remediation tracking, technology risk management, information security, cybersecurity, IT audit, IT governance, technology operations, cloud, third-party technology risk or related risk and control functions.

Skills Required

  • Degree in Information Technology, Economics, Accounting, Finance, Mathematics, Statistics, Law, Engineering, Business Studies
  • Post-graduate degree or professional certification in Technology Risk, Information Security, Cybersecurity, IT Audit or Risk Management
  • Experience managing technology and cyber incident lifecycle: review, assessment, escalation, remediation tracking and closure
  • Experience developing and maintaining technology risk frameworks, policies, methodologies, risk appetite and tolerance statements
  • Preferably minimum four years banking or industry experience in technology/cyber risk, information security, IT audit, IT governance, cloud or third-party technology risk
  • Experience providing independent advisory, challenge and assurance on technology change initiatives, outsourcing arrangements and material technology incidents
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Faribault, MN
400 Employees
Year Founded: 2022

What We Do

KGP Services is a leading network services provider and trusted partner to customers who build, own, and operate high-speed fiber, wireless, and cloud networks across North America. We combine complete end-to-end capabilities with a customer-first culture to provide custom services including design, engineering, installation, integration, and maintenance for all technologies. Through our new partnership with Circet, Europe’s largest network services provider, KGP Services is positioned for greater scale and expansion to help customers meet the fast-growing demand for high-speed connectivity.

Similar Jobs

Mastercard Logo Mastercard

Analyst/Senior Staffing Analyst, Advisors Client Services

Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Remote or Hybrid
Selangor, MYS
38800 Employees

Mastercard Logo Mastercard

Consultant

Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Remote or Hybrid
Selangor, MYS
38800 Employees

Micron Technology Logo Micron Technology

Senior Engineer

Artificial Intelligence • Hardware • Information Technology • Machine Learning
Remote
Batu Kawan, Selatan, Pulau Pinang, MYS
45000 Employees

Micron Technology Logo Micron Technology

Principal Engineer

Artificial Intelligence • Hardware • Information Technology • Machine Learning
Remote
Batu Kawan, Selatan, Pulau Pinang, MYS
45000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account