Technology Risk, Manager

Technology Risk is a specialised field within technology consulting that focuses on identifying, assessing, and mitigating risks associated with an organisation's technology landscape. In today's highly digitised world, businesses heavily rely on technology to drive innovation, enhance operational efficiency, and deliver seamless customer experiences. With the prevalent use of technology comes a corresponding rise in risks, such as cyber threats, data breaches, system failures, regulatory non-compliance, and operational disruptions.

As part of the Technology Risk practice, you will collaborate with a dynamic team of experienced consultants and engage with our clients from different sectors, addressing their technology risk challenges and implementing robust risk management strategies. This role offers extensive learning opportunities, exposure to diverse projects across different geographical locations and emerging technologies, and the chance to contribute to shaping the risk landscape for our clients while helping them navigate the digital landscape with confidence.

As a Technology Risk Manager/ Associate Director, your role will encompass a range of responsibilities with a focus on mitigating technology-related risks:

• Participate in business development activities such as responding to proposal requests, presentations, and publications.
• Lead the planning and execution of technology risk engagements. Assist in the development of risk-based IT internal audit programmes. Close out engagements by producing high quality documentation, reports, and presentations.
• Support the assessment of technology risks and evaluate the design and operation of client controls related to complex IT environments and systems against KPMG’s frameworks, regulatory and third‑party frameworks.
• Use advanced tools and technology to increase productivity and effectiveness of our review and advice to clients.
• Identify and communicate value‑adding recommendations on technology risk and control management issues, as well as performance improvement opportunities for clients.
• Attend meetings with all levels of client stakeholders to define problem statements, analyse key priorities/ issues and collaborate with team members to conduct workshops, develop responses to client enquiries and ensure timely reporting.
• Develop and conduct training for internal and external audiences on IT risks, governance, and controls.
• Involvement in end‑to‑end technology risk engagements; working alongside team members from various functions to overlay point‑of‑views (POVs) and industry insights via research and analysis; formulate solutions and recommendations to address clients’ needs, challenges and risks.
• Collaborate across global and advisory teams in technology consulting, cyber security, internal audit and deals advisory to deliver holistic solutions and multiple POVs to clients.

• Possess recognised tertiary qualifications in Computer Science, Information Technology, Information Systems, Computer Engineering, Accountancy/Commerce/Business, or related disciplines.
• First‑hand experience of 7 to 8 years in IT audit/ assurance, or IT advisory; experience in any of the following areas will be advantageous: IT Risk and Compliance, IT Governance, IT Internal Controls, IT Audit.
• Certifications in CISA will be required and certification in CISSP, CCSP or equivalent will be advantageous.
• Good knowledge of information security, IT management, system development lifecycle, and ability to learn emerging methodologies, technologies and new skills quickly.
• Self‑motivated individual with inquisitive, innovative and resourceful mindset, able to work under pressure with changing priorities.
• Strong client, stakeholder and team management abilities coupled with excellent communication, written, analytical, organisational and problem‑solving skills.
• Possess excellent written and oral communication skills with the ability to present ideas and results to technical and non‑technical audiences, which include audit committees and senior management.
• Be innovative and resourceful with strong interpersonal, organisational, presentation and report writing skills, have a naturally inquisitive mind and be able to think “outside the box”.
• People who are able to go the extra mile spend time beyond working hours if needed for work or building client relationships.

Only shortlisted candidates will be contacted by KPMG Talent Acquisition team, personal data collected will be used for recruitment purposes only.

At KPMG in Singapore we are committed to creating a diverse and inclusive workplace. We believe that diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our clients and communities. As an equal opportunity employer, all qualified applicants will receive consideration for employment regardless of age, race, gender identity or expression, colour, marital status, religion, sexual orientation, disability, or other non‑merit factors. We celebrate the different talents that our people bring and support every staff member in their journey to achieve personal and professional growth. One of the ways we do this is through Take Charge: Flexi‑work, our flexible working framework which enables agile and innovative teams to help deliver our business goals.