Hybrid AVP, Cybersecurity Risk & Control, ISS, Group Technology en DBS Bank
DBS Bank · Singapore, Singapur · Hybrid
- Senior
- Oficina en Singapore
Business Function
Group Technology enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group Tech, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Responsibilities
Risk Management:
- Act as first line of defense and focal point for the team for risk and control matters.
- Collaborating across units to drive risk reduction and mitigation initiatives
- Review identified issues, action plans proposed and verify remedial solutions for closure.
- Work with Line managers and oversee risk mitigation programs to remediate control gaps identified from root cause analysis and lessons learnt.
- Develop framework and metrics to support the department risk mitigation programs and escalate emerging or at-risk issues to the relevant stakeholders in a timely manner.
- Manage the KRIs reporting and track the KRIs to prevent KRIs breaches.
- Coordinate and drive programs to enhance the risk posture of the department.
- Manage the periodic risk reviews and assessments, control testing, analysis of key risk indicators to review effectiveness of internal controls and to ensure risk exposure over the key processes are within risk appetite and comply to the bank’s standards.
- Ensure proper documentation on risk mitigation programs from the department.
- Ensure accurate and timely submission of risk and control reports
- Provide support and training to foster strong risk culture and risk awareness within the department.
- Conduct risk and control self-assessments to evaluate the risk and security posture of the department.
- Develop, review and update information security policies, standards and guidelines to benchmark against best practices, comply against regulatory requirements and ensure relevance to the operating environment.
Audit, Regulatory, Compliance:
- Manage internal / external audits, regulatory reviews and act as audit focal point for the department.
- Tracking and reporting status to the team and provide management updates in management forums
Requirements
- Bachelor’s Degree in Computer Science, Engineering, Information Technology or related discipline from a recognized institution.
- At least five (5) years’ experience in technology development and support environment, vendor management, technology implementation or technology risk management.
- Prior working experience / knowledge in the following areas :
- Technology and operational risks lifecycle management
- Managing IT Audits / Governance / Risk Management programs
- Performing risk reviews, assessments or threat modelling
- Performing deep-dive investigation for control and process issues.
- Communicating risk and control findings with key stakeholders, developing recommendations and provide accurate metrics and management reports.
- Well versed with governance and control frameworks as well as regulatory requirements on technology management and controls
- Sound understanding of technical processes, policies and risk measurements.
- Good control mindset and the ability to understand a broad range of operational and technical issues
- Strong analytical, problem-solving skills and meticulous
- Strong communication, interpersonal and written skills; able to communicate with stakeholders, higher management, technical support units and users.
- Influential in communication, able to drive towards agreed solution.
- Able to work independently with minimal supervision and with a positive attitude
- Able to drive risk and control awareness within the department and drive cultural change.
- Experience in utilizing programming skills to analyse data to facilitate risk reviews and assessments.
Apply Now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognises your achievements.
Solicitar ahora