Production Security Risk and Governance Analyst

This role is part of the APAC IT Production Security team and focuses on IT risk governance, audit coordination, and control monitoring. The successful candidate will support transversal functions across the Production Security department, ensuring compliance with internal and external risk and audit frameworks, and contributing to continuous improvement initiatives.

Requirements:

• Oversee Level 1 control execution and report into the IT OPC framework
• Manage audit and regulatory request handling
• Maintain audit findings register and track closure status
• Monitor IT Risk Acceptances and Mitigations
• Lead enhancements of governance processes, communication, and reporting
• Consolidate results from control activities and assessments into knowledge base
• Support evidence delivery for audits and IT control reviews
• Contribute to remediation of control gaps and findings
• Facilitate problem-solving and continuous improvement initiatives
• Participate in department-wide transversal tasks (e.g., RSA token mgmt., EUC inventory)

Qualifications:

• Degree in Computer Science or related field with IT Security specialization
• Minimum 3 years’ experience in IT audit, risk, or governance roles in the banking industry
• Familiarity with IT risk management, audit frameworks, and security operations
• Strong documentation, reporting, and analytical skills (including KPIs and dashboards)
• Strong organizational and multitasking capabilities
• High proficiency in MS Excel and MS Office Suite, including SharePoint
• Project management experience is a plus