Technology Risk & Operations Analyst
Important Information
Location: Singapore
Responsibilities:
Operational Support & Reporting
- Prepare project status reports, management reports, and dashboards for all scope areas (projects, operations, risk, vendor management).
- Deliver ad hoc reports for urgent leadership decisions and audits, ensuring clarity, accuracy, and actionable insights.
- Track operational metrics (e.g., SLAs, incident/defect rates, lifecycle KPIs) and provide insights for decision-making.
- Maintain reporting cadences and data quality standards; automate recurring reports where feasible.
- Support process standardization and governance across technology operations, including documentation, templates, and SOPs.
Audit & Risk Management
- Manage internal and external audits and reviews, including GRC updates, RFIs, and audit observations.
- Provide risk oversight and governance for technology domains.
- Lead audit readiness activities: evidence management, engagement coordination, remediation tracking, and closure.
- Monitor risks and track resolution of issues from breaches, incidents, reviews, and inspections; ensure timely updates and escalations.
- Maintain knowledge artifacts: playbooks, control catalogs, FAQs, and micro-learning content.
Digital Workplace & Vendor Management
- Oversee TPRA, vendor management, BCM, annual KRCSA, and risk reduction initiatives.
- Manage technology asset lifecycle (hardware, software, licenses): refresh planning, obsolescence tracking, and decommissioning.
- Coordinate procurement operations and vendor/contract enablement: intake, sourcing, onboarding, renewals, and compliance.
- Partner with Vendor Management to track performance, SLAs, and contract obligations; support third-party risk assessments.
Technology Governance & Vulnerability Management
- Oversee vulnerability management, remediation, and ISRA renewals.
- Liaise with application domains on ORSA submissions, including obsolescence scope, budgeting, and delivery timelines.
- Act as liaison for Tech Obsolescence task force and provide reporting.
- Manage RTB Capex projects: budget tracking/approval, memo approvals, and escalation handling.
REQUIREMENTS:
Core Skills & Competencies
- Risk & Controls: Control design/effectiveness, risk assessments, issue management.
- Operational Reporting: KPI design, data quality, dashboarding, storytelling with data
- Audit Readiness: Evidence management, walkthroughs, remediation tracking, stakeholder coordination.
- Process Governance: SOP creation, standardization, continuous improvement.
- Vendor & Asset Management: Lifecycle planning, procurement coordination, third-party risk awareness.
- Stakeholder Management: Cross-functional orchestration, facilitation, conflict resolution.
- Tools: Power BI, Excel (advanced), Jira, SharePoint/Confluence.
Education:
- Bachelor’s degree in a relevant discipline (CS, IT, Info Systems, Cybersecurity, Engineering)
- Preferred: Enhanced Credentials: Industry-recognized certifications such as CISA, CISM, CISSP, etc)
- At least 8-12 years’ relevant experience preferably in a Finance Institution.
About Encora
Encora is a global company that offers Software and Digital Engineering solutions. Our practices include Cloud Services, Product Engineering & Application Modernization, Data & Analytics, Digital Experience & Design Services, DevSecOps, Cybersecurity, Quality Engineering, AI & LLM Engineering, among others.
At Encora, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality