Technology, Information and Cyber Risk Officer (ORM), Manager

  • Competitive
  • Kuala Lumpur, Malaysia Kuala Lumpur Kuala Lumpur MY
  • Permanent, Full time
  • OCBC Bank (Malaysia) Berhad
  • 20 Apr 18 2018-04-20

Technology, Information and Cyber Risk Officer (ORM), Manager

The objective of Technology, Information & Cyber Risk (TICR) function is to establish and maintain governance and oversight on the effectiveness of technology, information and cyber risk management for the OCBC Group.

Reporting to the Head of Technology, Information or Cyber Risk Management, he/she will have the following responsibilities:

  • Support risk governance and oversight on the effectiveness of technology, information or cyber risk management for the OCBC Group
  • Perform regular risk monitoring and reporting on risk landscape
  • Lead or participate in the review and enhancement of controls of existing banking services against emerging technology, information and cyber risks
  • Provide risk advisory service, including recommendation of risk mitigation options, on technology, information and cyber risks associated with new banking services, fintech initiatives, outsourcing-related arrangements, regulatory and legal guidelines
  • Keep abreast of new technologies and related risks, industry trends, and regulatory requirements relating to technology, information & cyber security
  • Lead or participate in the incorporating of relevant regulatory and banking industry guidelines into existing policy, standards and procedures
  • Drive or support the bank-wide technology, information and cyber risk awareness and training program
*LI-LCH

Qualifications
  • More than 5 years of experience in technology, information or cyber risk management, information security or IT audit in Financial Services Industry
  • Experience in leading or executing risk assessment and risk reduction initiatives
  • Good knowledge and experience with risk management, IT governance and information security management standards
  • Good knowledge and experience with legal and regulatory requirements pertaining to technology, information or cyber risk management (Malaysia, Singapore and regional Asia)
  • Good problem analysis and resolution skills
  • Able to contribute independently as well as through others
  • Good influencing skills within the team, department and across departments
  • Ability to collaborate well across seniority, cultures and locations
  • Good written and communication skills with ability to interact and engage with stakeholders and all levels of management
  • Ability to work well under pressure and respond to tight deadlines
  • Proactive and consistently show initiative, solution-oriented
  • Minimum Degree in Computer Science or equivalent technical degree
  • CRISC, CISA, CISM and/or CISSP advantageous