1. Enforce the IT Governance Framework - Implement the IT governance strategy and roadmap in alignment with business objectives and risk appetite.
- Enforce IT governance policies, standards, and best practices across the organization, ensuring compliance with industry frameworks and regulatory requirements.
- Maintain and update the IT Technology Control Catalogue; identify control gaps and track remediation efforts with relevant IT teams.
- Coordinate periodic user access and privileged access reviews in collaboration with IT and business units.
2. IT Risk and Audit Management - Support independent risk reviews and assessments, including system and vendor risk assessments.
- Assist with internal and external audit requests.
- Prepare and support IT risk and control management reporting.
- Maintain records of application disaster recovery (DR) drills and coordinate timely execution with IT teams, including follow-ups on any identified issues.
Role Requirements - 2-5 years of experience in the Financial Services industry, with strong knowledge of IT risk and control processes within a securities or capital markets firm. Candidates from Big 4 with an FS industry focus will also be considered.
- Hands-on experience with tools such as CyberArk, SailPoint, or Archer is preferred.
- A university/college degree is required; an advanced degree is a plus.
- Relevant certifications (e.g. CISA) are required.
- Familiarity with regulatory requirements, particularly those from HK SFC and SG MAS, is an advantage.
- Strong analytical, time management, and interpersonal skills.
- Ability to manage multiple priorities independently.
- Self-motivated, results-driven, and able to work with minimal supervision.
Please get in touch with Leon Bosco regarding this role.
Back
