Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. 

As a Tech Risk & Controls Lead in Cybersecurity and Technology Controls , you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. We value your capabilities and contributions and encourage you to apply your deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will not only contribute to the reporting of a comprehensive technology risk posture and its impact on the business, but also help shape the future of cybersecurity in our organization.

Job responsibilities

Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Leverages tools and emerging technology to lead the execution of technical risk assessments at a large scale across the Asia Pacific technology estate of ‘last mile’ applications and in-country applications Guides the evaluation of current cybersecurity principals, processes, and controls, and leads the evaluation of new technology using existing standards and frameworks Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals 

Required qualifications, capabilities, and skills

Bachelor’s Degree in Computer Science, Cybersecurity, Data Science, or related disciplines 7+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on managing risk identification, assessment, and mitigation. Hands-on practical experience delivering enterprise level cybersecurity solutions and controls Advanced knowledge of cybersecurity architecture, applications, data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies Ability to tackle design and functionality problems independently with little to no oversight Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives 

Preferred qualifications, capabilities, and skills

In-depth knowledge of the financial services industry and their IT systems CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred