Responsibilities

  • Support Senior Management in the company in assessing non-financial risks, including operational, fraud, compliance, IT security, finance reporting and business continuity risk, and designing and testing control structures.
  • Providing effective 2nd line of defense on oversight of Technology and Regulatory related risk involving in assessing, in depth, the risks in operational, reputation, regulatory, process, service and IT.
  • Facilitating Risk and Control Self-Assessment (RCSA) and monitoring the design and testing the operational effectiveness under Key Control Testing (KCT) and incident management, BCP & IT-DRP and processes.
  • Analysing incidents reported by staff and report lessons learned to the Head of Risk Governance, International Risk and Fraud Management, Senior Management and the Committee respectively.
  • Driving the responsible businesses by providing support, recommendations and executing the implementation of Risk Management policies and minimum standards regarding the risk identification, assessment, monitoring and control measures by using operational risk tools e.g. RCSA, Incident Management, Action tracking, Key Control Testing, Key Risk Indicator, PSAP and Outsourcing, BCP, BIA, Project Risk.
  • Assessing and evaluating new and existing product, process, service, system, and outsourcing on the risk assessment in accordance with the company’s PSAP Approval Process Flow.
  • Monthly reported to the International Risk and Fraud Management for non-financial risk reporting.
  • Assisting the Head of Risk Governance and International Risk and Fraud Management to bring together a holistic picture of the operational risks across the company.
  • Monitoring the follow-up actions by observing and reviewing the implementation of actions, testing the effectiveness and closing the actions regarding the operational risk areas, preparing reports and trend analysis, and escalating to the Management, Management Committee in case of non-implementation in the timely manner.
  • Providing risk awareness program, training, knowledge sharing to the business units for matters related to Operational Risk and Risk Culture.
  • Other assignments as required.

 

Qualifications

  • Bachelor’s or Master’s Degree in Business Administration, Economic, Finance, IT or related fields.
  • Minimum 3 years of professional experience in financial services, and 1-2 years in Operational Risk Management and/or Auditor.
  • Good knowledge/understanding of operational risk. Knowledge of Operational Risk Framework is a plus.
  • Good knowledge in Word, Excel, and PowerPoint.
  • Sound analytical capabilities, proven problem solving skills and judgement skills.
  • Enthusiastic, positive attitude and can work under pressure.
  • Professional certification (i.e. CIA, CPA, FRM, etc) is a plus.
  • Good command in both oral and written in English communication.