Responsibilities:

• Assess the risk control environment across IT and lead any required improvements to ensure its effective design and operation

• Identify areas of risk and develop appropriate controls to address these weaknesses.

• Design and implement processes and tools to govern and execute technology controls in line with the changing risk and regulatory landscape.

• Drive effective risk mitigating controls designed, deployed, and monitored by the application & Infrastructure owners, developers, and support teams.

• Execute, ensure and provide guidance on control-gap remediation; oversee action plans and resolution of control issues

• Reviews key controls metrics and engaging stakeholders appropriately to ensure adequate control management.

• Execute the vulnerability and penetration testing as necessary

• Provide consultancy and advice to the adoption of emerging and disrupting technologies by new initiatives in relation to technology risk

Requirements:

• Degree holder preferably in Information Technology, Information Security or relevant discipline

• 10 years of experience in IT related functions, IT Risk or Controls, including the implementation of associated Policies and Standards frameworks. Banking background is preferable.

• Certification in CISSP, CISA, CISM, Cybersecurity, Infrastructure Domains or Application Security would be desirable.

• Proven experience in providing hands-on advice and direction on any technical issues

• Experience in the following areas desirable: automation, network and application security, data loss prevention, identity and access management, vulnerability management, and data encryption

• Ability to be flexible, follow tight deadlines, organize and prioritize work.

• Clear, concise, and confident communicator (written & verbal).

• Ability to persuade and influence is key. Must have ability to be tactful yet assertive.

• Ability to change direction and adjust priority as needed by senior management.

• Previous experience in diverse range of technology, risk and control roles.

•Highly motivated team player with excellent analytical, written and verbal communications skills is required.