Digital Program Specialist - IT Risk and Program Management

Digital Program Specialist - IT Risk and Program Management. The Asian Infrastructure Investment Bank (AIIB) is a multilateral development bank whose mission is Financing Infrastructure for Tomorrow in Asia and beyond, with sustainability at its core. We began operations in Beijing in 2016 and have since grown to 111 approved members worldwide. We are capitalized at USD100 billion and AAA-rated by the major international credit rating agencies. Collaborating with partners, AIIB meets clients' needs by unlocking new capital and investing in infrastructure that is green, technology-enabled and promotes regional connectivity.

The Information Technology Department (ITD) provides technical services in digital services, IT-related procurement, cybersecurity, IT risk and resilience, data management, digital learning, and digital transformation. ITD ensures alignment with the Bank\'s needs and priorities, oversees the IT strategy, manages technology resources, and provides technical support across Bank operations to foster a digital and data-driven culture and ensure smooth operation and security.

• Conduct IT security and risk due diligence on vendors and third parties during related corporate procurement stages.
• Collaborate with corporate procurement, legal, compliance, and IT teams to assess vendors\' security risks and embargo and sanction risks.
• Lead the Third-Party Security Assessments (TPSA) program to evaluate, mitigate, and monitor security risks associated with IT vendors and suppliers, including outsourcing suppliers, cloud service providers, open-source technologies, and product security.
• Coordinate IT outsourcing management activities including outsourcing planning, risk assessment, performance monitoring, and compliance oversight to ensure alignment with the Bank\'s outsourcing management requirements.
• Support the Team Lead of IT Risk, Resilience and Cyber Security to oversee the Responsible AI Governance framework, policies, and standards, ensuring compliance, ethical standards, and risk mitigation are embedded throughout the development lifecycle.
• Conduct ongoing risk assessments of AI use cases and systems, and implement tailored oversight and risk controls based on use case criticality and AI maturity.
• Coordinate with IT and business teams to support IT security and risk initiatives, ensuring alignment with bank requirements and industry best practices.
• Support internal and external IT audits, ICFR control testing, risk control assessment, etc.
• Track, analyze, and report on the effectiveness of IT security and risk programs using key metrics and data insights, ensuring compliance with security requirements and supporting continuous improvement.

• 5-8 years of relevant working experience in IT risk and program management and relevant fields, preferably with financial institutions.
• Bachelor\'s degree in computer science, information security, data science, risk management, or a related discipline. Master\'s degree would be a plus.
• Strong understanding of information security, AI and privacy standards, frameworks, and compliance requirements, including ISO 27001, NIST AI RMF, NIST CSF, NIST SP800, SOC 2, and GDPR.
• Certifications such as CISSP, CISM, CRISC, PMP, and ISO 27001 Auditor would be an advantage.
• Hands-on experience conducting due diligence and third-party security risk assessments.
• Strong knowledge of IT outsourcing risk, cloud risk, AI risk, and embargo and sanction risk.
• Familiarity with cloud security principles and cloud-native security solutions on Azure and AWS.
• Strong business acumen and the ability to balance technical security needs with business priorities.
• Ability to work effectively in a multicultural organization.
• Strong data analysis, reporting, writing, and communication skills, with the ability to interpret complex data and prepare clear, actionable reports and insights for executive-level stakeholders.
• Excellent project-management skills and attention to detail, with the ability to lead the team to manage multiple workstreams.
• Excellent written and oral English language skills.

AIIB is committed to diversity, transparency, and inclusion. We believe our strength comes from having a team with the right diverse skills, experiences and abilities selected through a merit-based competitive process. We actively encourage applications from people from both within and outside AIIB members, regardless of nationality, religion, gender, race, disability, or sexual orientation.

Previous experience and qualifications will determine the grade and job title at which successful applicants will enter AIIB.

Join us and help create a prosperous and sustainable Asia while growing your career in a diverse and innovative environment.

ALL CURRENT VACANCIES – Closing Date: All opportunities close at 11:59 p.m. (GMT+8) on the dates listed. Job Type: Recruitment of staff is conducted through a merit-based competitive selection process. AIIB shall strive to provide employment opportunities open to all suitably qualified applicants, regardless of religion, gender, race, disability, sexual orientation or nationality.