Risk & Control Manager (IT Risk / Technology Audit / Banking)

Executive Summary

Smart IMS Inc provides Digital technology & Cloud transformation services, Application & Infrastructure Management Services, Unified Communications and Insurance implementation services to customers across the Americas, Europe, Middle East, and Asia-Pacific regions. As the trusted technology and business partner of leading MNCs, including Global Investment Banks, Smart IMS is also a Microsoft Gold Certified Partner, Oracle Platinum Partner and AWS MSP Partner.

We are looking to hire a Risk & Control Manager in Singapore to support our client which is a top global investment bank.

Your background

• Individual with IT risk/audit experience preferably in Banking/FI domain.
• Bachelor’s degree in IT, minimum 4-6 plus years of experience, industry certifications (CISA, CISM, COBIT foundation, etc) preferred.
• Relevant experience in executing Risk initiatives within a tech risk function, compliance or technology audit role
• Experience in leading programs for proactively identifying regulatory risk exposure and potential non-compliant areas
• Knowledge of APAC regulations & understanding of regulatory risk management preferred

What you can expect

• The role will sit within the APAC Risk & Controls function of the bank, which works with Application Managers, Enterprise Control functions and COOs across the line of businesses to ensure that control gaps are identified and remediated.
• You will oversee the effective implementation of the Bank’s Risk framework and Global Technology (GT) governance routines and requirements, using established tools and documented procedures. This includes documentation to enable tracking, monitoring, and escalation of technology risk related issues to management, and acting as an ambassador of the risk culture.

What you will do

• Manage senior stakeholders communication and reporting
• Develop and socialize potential risk mitigation strategies
• Drive risk engagement & management and issue identification; in particular E2E risk management includes ERP, RCSA, eRIC, SIAI, JDI, AIAI, RIAI etc.
• Drive QA (Quality Assurance) testing, Business Continuity for applications, Sustainability Program and new toolset adoption with JIRA for Risk management.
• Foster the Identify, Escalate, Debate risk culture
• Assess regulatory (eg MAS, HKMA, CBRC, OJK, RBI, etc) changes impacting technology and operations and drive related risk mitigation program with required stakeholders
• Identify opportunities for enhancing or streamlining execution of risk management processes; partner across multiple divisions to execute.
• Manage regulatory relationships, where relevant
• Collaborate across the GCIBT application groups, Risk Leads and enterprise process owners (including Global Information Security) to respond to Internal and External Audits, Exams, and Regulatory/Clearing Inquiries & Assessments.
• Quality assurance and Global Information Security related findings program oversight
• Assist business and process owners with remediating the most significant risks including Audit Issues, Self-Identified Audit Issues, Compliance Identified Audit Issues, Regulatory Issues
• Practice and promote good risk culture and risk management within GCIBT, leading participation in technology risk activities.