Risk and Control Analyst

Key Responsibilities

Risk Management

• Conduct risk assessments and propose / implement risk management plans.

• Ensure visibility, escalation, and management of IT risks inherent in the delivery of technology services and day to day operations

• Review risk issues that are lodged in GRC tool timely and lapses are managed and risk assessed

• Collaborate with the Second Line of Defense (Tech Risk) to conduct periodic control self-assessment exercises.

• Identify emerging risks, conduct thorough risk assessments, and implement effective mitigation strategies.

Compliance and Audit

• Ensure compliance with IT policies and standards and regulations

• Coordinate IT audits and manage responses to audit findings

Collaboration and Communication:

• Facilitate IT Risk governance training and awareness programs for employees

• Promote a strong IT risk culture across the Technology division

Performance Monitoring and Reporting:

• Monitor key performance indicators and key risk indicators

• Report on IT governance performance to stakeholders in Risk Committees

• Highlighting and articulating inherent risks to senior management.

Requirements

Experience

• Diploma or Degree in Computer Science or Information Technology.

• 3 – 5 years of experience in Technology Risk ie. monitoring of IT Operations, Security, Risk and Compliance or audit.

• Familiar with MAS regulatory requirements including Technology related MAS notices, guidelines, advisories, PDPA

• Industry certifications like CISA, CISM, CISSP, CRISC and ITIL will be beneficial

Thanks, and Best Regards

Lini

Recruitment Consultant

R22108463