Regional Head of IT Risk, Asia Pacific

  • Negotiable
  • Singapour, Singapore
  • CDI, Plein-temps
  • Morgan McKinley Singapore , Numéro de Licence EA : 11C5502
  • 14 sept. 17

This exclusive role to Morgan McKinley is a Regional Head of IT Risk, APAC, reporting directly to the Global head of IT Risk. It will provide IT Risk guidance and direction in the region, working with regional Technology and Information Risk Management leads across all lines of business and is an influential role in ensuring consistent and prompt implementation of control initiatives

This exclusive role to Morgan McKinley is a Regional Head of IT Risk, APAC, reporting directly to the Global head of IT Risk. It will provide IT Risk guidance and direction in the region, working with regional Technology and Information Risk Management leads across all lines of business and is an influential role in ensuring consistent and prompt implementation of control initiatives

This role is expected to provide effective and accurate translation and interpretation of all IT Risk legislation and regulations within the region, linking them with internal policies and standards

To work as part of the region's technology teams to be effective in the implementation of IT Risk in all systems and technology, in addition to ensure a good level of understanding around the requirements of IT and IT Risk awareness and training. To provide sound guidance and leadership and enable leverage of security-solutions across multiple business lines in the region

This position will work closely with the regional IT Risk teams & Information Security teams to ensure any location differences are considered in the development of global information and resiliency risk policies, standards, guidelines, processes and metrics

Primary responsibilities

  • Collaborate with Information Risk & Compliance Managers across lines of business to aggregate technical risks and findings in assets and systems to provide a holistic view of technology risk across a country location.
  • Assess the various information technology risks that the business faces in its operations and implement action plans, policy and procedural changes for risk avoidance and mitigation
  • Monitoring and analysis of regional technology key risk indicators.
  • Proactively identify potential risks based on changes to business models, technology models, and external trends.
  • Develop executive level reporting and communications to support risk-informed business decisions
  • Understand and can consult on information security standards and industry best practices
  • Identify and maintain variances in policies and standards for addressing country specific regulatory requirements. Review proposed IT Risk Policies and Standards for conformance and input of country requirements
  • Reinforce Information Risk Policies and Standards, and provide risk management support to businesses running in country.
  • Act as a coordination point for responses to any RFIs, audits or inspections.
  • Monitor and report implementation of key initiatives to local country management and regional teams.
  • Facilitate and assist with firm-wide technology control assurance in country locations
  • Interact with other relevant firm-wide control bodies (IT Governance, Audit, Operational Risk, Legal/Compliance, Resiliency Risk Management)
  • Promote and improve awareness of security threats, laws and regulations, policies and standards

The Successful Candidate

  • 15+ years of IT experience, the majority of which should be in an IT Risk or Security role, preferably in the financial services sector
  • Broad based knowledge of IT Risk, IT Compliance, Security and disaster recovery/business continuity, with appropriate qualifications or certifications (CISM, CISA, CISSP or equivalent)
  • Broad knowledge or experience of working with regional regulators, Hong Kong, Australia, Japan etc
  • Significant analytical and critical thinking skills
  • Demonstrated technical abilities in multiple areas (e.g., technology infrastructure platforms or networks, application development, data protection, etc.)
  • Ability to manage multiple projects concurrently, work under pressure, and meet tight time commitments
  • Strong process orientation and understanding of operations and technology enabling candidate to provide support in the analysis, development and monitoring of controls
  • Ability to build and maintain collaborative working relationships with Information Technology and Business to design and assist in the execution of appropriate controls design and monitoring
  • Proven ability to develop and maintain senior level stakeholder relationships
  • Strong Program/Project Management and influencing skills
  • Excellent written and oral communication skills in English

Please apply direct or send your CV to gsandhu@morganmckinley.com.sg

Registration No: R1113687

EA Licence No: 11C5502