Job description

Job Description

The Group Technology and Operations (T&O) Risk Governance & Assurance (TOGA) function, as a first line of defense, works closely with T&O leadership to identify, assess, mitigate and manage risks and ensure the existence of appropriate controls. This team works across the T&O functions across the Group to ensure transparency and understanding of operating issues, risks and opportunities, including the sound risk governance and risk oversight of T&O activities. Also, the function monitors the industry, market and regulatory developments to anticipate changes and help ensure appropriate alignment of banking operations and technology risk management strategies and policies with potential impact assessment. Additionally, the team conducts independent assurance reviews across the T&O functions across the Group to ensure that key controls are adequately designed and are operating effectively.

Job Responsibilities

Collaborating closely with the Technology and Operations teams across the Group, the successful candidate will support the Group Head of Technology & Operations Risk Governance, to drive first-line Technology risk governance activities, including providing effective governance oversight on T&O third-party risks . This will include, but not be limited to the following:

• Drive adherence by Group Technology & Operations, to the Bank’s Technology risk management and third- party risk management framework, policies & guidelines.
• Strengthen risk management and governance oversight capabilities across Technology and Operations teams. Challenge and advise teams on technology and third-party risk matters, to ensure adequate resolution of risk issues, including incidents and complaints.
• Support senior management in risk oversight and governance, through analysis and reporting of key risk issues/ trends, key risk indicators, and facilitate discussions during the regular governance committee meetings.
• Ensure timely escalation of risk issues and incidents across the Group, for management awareness and development of action plans, and timely reporting to Second Line as required by Bank’s policies, and regulators as required by applicable regulations. Ensure timely closure of key actions set out to address risk issues, with review of artefacts to ensure issues are addressed adequately.
• Function as the key liaison party with regulators on responses to queries. Ensure timely and effective operationalization of new/ existing regulatory requirements.
• Provide support and training to foster strong risk culture and risk awareness within the Group. Develop effective and collaborative relationships and foster ongoing open lines of communication regarding IT and third-party risk governance across the Group.
• Lead and mentor team effectively to achieve outcomes, and build a high-performing and motivated team.

Job Requirements

• Minimum of 13 years working experience with at least 7 years in any of these disciplines: technology and information risk management, audit, compliance, third-party risk management, preferably in a banking environment. Broad and deep experience in managing and/or assessing the adequacy of controls over technology system and controls in a bank.
• A university degree in IT, computing, Information Systems, data analytics/ artificial intelligence, or any risk management related domain. Professional certifications like CRISC, FRM, CA, CISA, CISM, CISSP will be advantageous.
• Strong leadership skills to sustain a high-performing and motivated team.
• Good communication, presentation and influencing skills and able to manage stakeholders across multiple disciplines.
• Excellent use of MS Word, MS Excel, PowerPoint. This is necessary for the creation of engaging reports and presentations, for senior management, executives, and stakeholders.

Additional Requirements