Manager - Governance, Risk & Compliance (Asia IT)

Posted:
2/12/2025, 4:00:00 PM

Location(s):
Taguig, Metro Manila, Philippines ⋅ Metro Manila, Philippines

Experience Level(s):
Senior

Field(s):
IT & Security

Workplace Type:
Hybrid

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

Accountability

SLFs’ Risk Management framework sets out the over-arching framework for the management of risk across the enterprise. This role requires the implementation & embedding the program within Vietnam in close alignment with Asia IT GRC team, Corporate Risk & Corporate Audit teams. Key component of the Operational Risk Management Framework includes working with Technology leaders (CIO, CTO etc.) to identify and assess the top inherent risks and the associated internal controls to help understand the residual risk exposure within the business.The role includes monitoring & independent testing of the day to day operating controls, escalating issues / Operational Risk Events & closely monitoring them.

Developing, reviewing, approving and periodically refreshing VN IT operating guidelines stemming from corporate, regional & local requirements.
Develop a risk strategy that identifies and classifies risks, measures risk levels using the CMMI Cyber Maturity / NIST CSF Framework.
Identify, assess, manage, and track remediation of risks related to IT infrastructure, applications, platforms and suppliers and drive explicit requirements.
Understanding of vulnerability management, penetration testing and security posture assessment programs.
Embed control framework / Quality Management Systems to align with enterprise policy, directive and practices within in Vietnam with up-to-date process flow documents.
Draw up the VN IT Governance Plan for each year and drive adherence to it.
Drive controls & compliance agenda for significant projects, initiatives & third-party relationships.
Manage the risks associated with a significant business disruption by establishing & governing a comprehensive Business Continuity Management Program.
Risk Assessment & response to the economic & business model and plan for new ventures, products and services.
Collaborate with the Design and Product leads, as well as clients, to define a minimum viable business build (or product / service) compliant to SLF standards.

Eligibility & Functional Competencies

Bachelor's Degree in CS/E&C/IT Engineering or MCA / MBA from Tie 1 institution with 8-12 years of experience in strategy development, business planning and future visioning in IT.
IRM (https://www.theirm.org/) Level-1 or Level-2 certified.
Well versed with innovation techniques/methodologies including design thinking, rapid prototyping & incubation, IP generation & protection, process innovation, etc.
Assess technology that is new to the company such as cloud computing, mobile technology and high-performance computing programs, and their related support models.
Exposure to recognized IT audit / security standards / practices (CISA, CIA, CISM, CISSP) designation (a plus).
Good understanding of concepts around COSO, COBIT, NIST, CSA, CRISC.
Advanced knowledge and skills in project management, project planning, budgets and methodologies.
Maybe part of the delivery / governance team of large transformational engineering project.

Competencies (Behavioral)

Proven relationship management skills including a demonstrated ability to deal effectively with staff of all levels including very senior functional Leaders.
Perform the task to consistently deliver on time, high-quality reports and analytics to the various Enterprise Risk Committees, Board of Directors, and regulators.
Multitasking and the ability to operate effectively under pressure.
Strong written and verbal communication skills, with ability to both develop relationships and formerly present findings and recommendations at executive and C-level.
Excellent planning and organization skills and the ability to deal with complex issues.
Working knowledge of financial institution processes, including those relating specifically to group functions such as Finance, Treasury, Insurance, Actuarial and Investments is an asset.
Experience working in a client-facing, matrix, project-based assignments; typically gained through prior audit, advisory, consulting, or accounting experience in a "Big Four" firm or other large organization.
Maintain knowledge currency (trends and business/operating models) and an understanding of the digital business paradigm at a business level.

Interested candidates must be amenable to the following:

frequent travel; 2 weeks in Vietnam, 2 weeks in Manila
hybrid work set-up (office location: Bonifacio Global City)
day shift, but willing to extend hours as needed

Job Category:

Compliance

Posting End Date:

16/04/2025

DENTAQUEST LLC

Website: https://dentaquest.com/

Headquarter Location: Nashville, Tennessee, United States

Employee Count: 1001-5000

Year Founded: 2001

IPO Status: Private

Industries: Dental ⋅ Health Care ⋅ Hospital ⋅ Insurance ⋅ Medical ⋅ Wellness

Senior Systems Engineer

ConvaTec Ltd • 2/3/2025 ⋅ United Kingdom

Internal Auditor Sr Technology (Infrastructure)

PNC Financial Services • 1/12/2025 ⋅ United States

Senior Identity & Access Management Engineer (Remote)

Kroll Bond Rating Agency • 1/28/2025 ⋅ Central African Republic, France, United States, United Kingdom, Canada

System Security Engineer

Arlo Solutions • 7/24/2024 ⋅ United States

Target Security Specialist

Target • 3/4/2025 ⋅ United States

Notify

postings

pricing

login