Business Functions
Group Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Bank's operational processes and inspire to delight our business partners through our multiple banking delivery channels.
Responsibilities
- Govern and manage the Risk Control Self-Assessment (annual and agile) activities and ensures that it is executed in line with the RCSA standard with accurate and complete coverage on risk relevant for the respective LOBT's
- Ensure the required assessment result of the RCSA has respective follow up action defined. Control gaps are registered in the centralised GRC system and where required, Control testing is designed and implemented to evaluate the sufficiency of the control design and operating effectiveness
- Monitor periodically the established technology KRI against the threshold, identify breaches and patterns based on the KRI data. Working closely with LOBT risk managers for follow up action on the KRI breaches to evaluate possible systemic issues, measures to implement (path to green)
- Proactive in assessing the KRIs whether it remains fit for purpose and provide recommendation for improvement/recalibration which include influencing and engaging stakeholders as part of KRI lifecycle management
- Drive and manage the agenda for the Technology Risk Forum, including reviewing stakeholders material that will be presented
- Experience and comfortable to lead technology risk assessment on ad hoc initiatives (new product approval that involve technology changes, Proof of Concept projects, Outsourcing Risk review on technology vendor) and able to articulate the technology risk exposure and its impact to the business that enables the Bank to make informed decision when embarking in such initiatives
- Engage with technology stakeholders to proactively lead the identification of risks at a detailed and technical level and ensure that IT is effectively driving remediation activities and to continuously improve IT risk posture
- Work with technology stakeholders to lead, design and implement technical IT risk mitigating measures
- Lead Technology risk initiatives and target reviews across DBS Group
- Assess regulatory (e.g., MAS, HKMA, CBRC, OJK, RBI, etc) changes impacting technology and drive related risk mitigation program with technology stakeholders
- Proactive in forging effective engagement with key stakeholders on risk management, control and governance matters
Requirements
- Degree in Computer Science, Engineering, Information Technology, or related discipline with minimum 15 years of working experience in the Financial / Banking IT industry
- Professional Certifications in Risk Management, Audit, Cybersecurity like CRISC/CGEIT/PMI-RMP/ITIL Expert/CRMA/CISSP, or related training will be advantageous.
- Strong verbal & written communication skills particularly effective documentation skills
- Strong knowledge with Software Development Life Cycle, IT and Access Controls and Cybersecurity Controls
- Good understanding of cybersecurity issues, operational risks and process improvement in the areas of technology and business
- Knowledge of the Banking Act MAS Technology Risk Management Guidelines, MAS Notice 644, MAS 655, Information Security Policy, Cyber Security Act, MAS Outsourcing Guidelines etc
- Demonstrated experience of leveraging data and analytics to get stakeholder buy-in
- Meticulous with eye for details and ability to perform deep-dive investigation and crunching for control and process issues
- Able to manage stress and multi-task in a fast-paced environment and able to work on irregular working hours
- Able to collaborate at various levels of stakeholders from the operating level to the senior management across locations
- Able to effectively manage time and prioritize tasks and responsibilities
- Systemic thinking with strong analytical and planning skills
Apply Now
We offer a competitive salary and benefits package and the professional advantages of a dynamic environment that supports your development and recognizes your achievements.
Primary Location
Singapore-DBS Asia Central
Job
Technology
Schedule
Regular
Job Type
Full-time
Job Posting
Sep 30, 2024, 6:32:00 AM
