en

Services

We understand that no two organisations are the same. Find out more about how we've customised our recruitment offerings to help clients across South East Asia meet their needs.

Read more
Candidates

Together, we’ll map out career-defining, life-changing pathways to achieve your career ambitions. Browse our range of services, advice, and resources.

Learn more
Services

We understand that no two organisations are the same. Find out more about how we've customised our recruitment offerings to help clients across South East Asia meet their needs.

Read more
About Robert Walters Malaysia

Since our establishment in 2006, our belief remains the same: Building strong relationships with people is vital in a successful partnership.

Learn more

Work for us

Our people are the difference. Hear stories from our people to learn more about a career at Robert Walters Malaysia.

Learn more

Head of Tech Risk & BCM

Save job

An exciting opportunity has arisen for a seasoned professional to lead and manage the Group’s Technology Risk Management and Business Continuity Management functions. This role is pivotal in ensuring that technology risks are managed within approved risk appetite and in compliance with internal and regulatory requirements

Head of Technology Risk and Business Continuity Management

As the Chief Information Security Officer (CISO), you will be responsible for protecting information assets and technologies. You will also lead the enterprise-wide planning and arrangements that enable the Group to continue operating critical business functions across a broad spectrum of disruptions.

  • Lead and manage the Group’s Technology Risk Management and Business Continuity Management functions
  • Act as the Chief Information Security Officer (CISO) ensuring information assets and technologies are adequately protected
  • Drive enterprise-wide planning and arrangements for business continuity

What you'll do:

As the Head of Technology Risk and Business Continuity Management, you will play a crucial role in defining the scope of key technology risks, assessing their impact, and implementing effective controls. Your expertise will be vital in formulating the Technology Risk Management Framework (TRMF) and Cyber Resilience Framework (CRF), ensuring compliance with all relevant regulations. You will provide strategic insights to senior management on technology risk, security matters, and the group's technology security risk profile. Additionally, you will oversee the annual Business Impact Analysis (BIA) exercises, review BCM policies, procedures, documentation, initiatives including testing for critical systems.

  • Define scope of key technology risks and its key risk indicators, working closely with various departments on risk identification, assessment, and control
  • Assess effectiveness of incident tracking, management, and reporting, providing advice to management based on emerging security threats or potential IT strategic issues
  • Formulate and facilitate effective implementation of Technology Risk Management Framework (TRMF) and Cyber Resilience Framework (CRF)
  • Enforce compliance with technology risk frameworks and other technology-related regulatory requirements
  • Provide strategic insights on technology risk, security matters, and the group’s technology security risk profile to senior management
  • Review annual Business Impact Analysis (BIA) and Risk Assessment (RA) exercises, BCM policies, procedures, documentation, initiatives including testing for critical systems
  • Monitor tasks in line with incident escalation and recovery objectives as well as business and regulatory requirements
  • Develop and implement technology risk related policies and procedures

What you bring:

The ideal candidate for the Head of Technology Risk and Business Continuity Management role will bring a wealth of experience in IT Risk, preferably within a financial institution environment. You will have a minimum of 8 years' experience in IT Audit as a compliance manager or IT Auditor, coupled with 2-3 years' management experience in an information technology function. Your strong analytical skills, strategic mindset, and proven leadership abilities will be key to your success in this role. CISSP / CRISC / CISM certification is required.

  • Bachelor's degree in Information Technology or equivalent
  • Minimum 8 years working experience in IT Risk preferably in financial institution environment
  • Minimum 8 years IT Audit experience as a compliance manager or IT Auditor
  • 2-3 years management experience in information technology function
  • CISSP / CRISC / CISM Certification
  • Strong analytical skills
  • Proven leadership and management skills
  • Strategic and forward-looking mindset
  • Influential, able to handle conflicts desirably

What sets this company apart:

Our client is a leading player in the financial services sector, renowned for their commitment to innovation and excellence. They offer a dynamic and inclusive work environment that fosters creativity and collaboration. With a strong focus on professional development, they provide ample opportunities for employees to learn, grow, and advance their careers. Their robust benefits package includes comprehensive health coverage, generous annual leave, and flexible working arrangements.

Do note that we will only be in touch if your application is shortlisted.

Agensi Pekerjaan Robert Walters Sdn Bhd
Business Registration Number : 729828-T
Licence Number : JTKSM 423C

Contract Type: FULL_TIME

Specialism: Tech & Transformation

Focus: IT Security

Industry: IT

Salary: Negotiable

Workplace Type: On-site

Experience Level: Senior Management

Location: Kuala Lumpur

Job Reference: WLEW02-CED54BAF

Date posted: 20 June 2024

Consultant: FlorieMae Salazar

I'm Robert Walters Are you?

Come join our global team of creative thinkers, problem solvers and game changers. We offer accelerated career progression, a dynamic culture and expert training.