Risk Regulatory & Compliance Advisor

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert: Create Alert

The Technology Risk Regulatory and Compliance Officer is responsible for ensuring compliance with regulatory requirements, particularly Bank Negara Malaysia's Risk Management in Technology (BNM RMiT) policy document, Securities Commission Malaysia’s Guidelines on Technology Risk Management, Labuan Financial Services Authority’s Guidelines on Technology Risk Management, and internal technology risk frameworks. The role involves assessing, monitoring, and enhancing technology risk compliance and regulatory adherence across the BIMB Group.

1. Planning, Development, Reviewing & Reporting

• Assist in planning technology compliance review/assessment
• Assist in preparation of compliance review/assessment report
• Establish technology compliance work program and review pack
• Monitor the progress of issues tracking arising from compliance review/assessment
• Monitor compliance status updates for monthly/quarterly reporting to management committee
• Oversee User Access Matrix (UAM) review for regulatory systems (e.g., Fibox, Kijangnet, ORION) and other systems

• Conduct regulatory reviews on technology/system-related areas for BIMB Group
• Conduct independent assessments on technology/system-related areas based on risk assessment outcomes

• Assist in serving as liaison to auditors, consultants, and regulators regarding documentation and review of Technology Compliance
• Liaise with other business units within the Bank to manage stakeholder inquiries or concerns on regulatory matters related to technology/systems

• Disseminate, coordinate, and identify regulatory requirements/submissions applicable to technology and information systems
• Monitor timely communication and updates provided to stakeholders on new and revised policy documents
• Engage with relevant stakeholders to perform compliance assessments and gap analyses on new/revised technology regulatory guidelines
• Review compliance progress on gap closures related to BNM policy documents
• Ensure timely submission of related documents/requests to BNM
• Review policies and procedures related to technology/systems to ensure relevance with regulatory requirements

• Bachelor's degree in IT, Computing, Information Systems, or related fields

• 3 or more years in information security, risk management, audit, or compliance in technology areas
• Preferably from one of the top 4 consulting firms

• Familiarity with security/technology regulations, standards, and best practices issued by BNM, PCI-DSS, Paynet, Securities Commission, etc.
• Experience in Technology Risk Management, IT Governance, IT Compliance, or IT Audit is advantageous
• Knowledge in:
• Financial institutions and business processes
• Technology and cybersecurity policies and standards
• Risk assessment tools, technologies, and methods
• Enterprise and operational risk frameworks
• Regulatory compliance
• Technology resiliency