The  role supports the Manager to evaluate the effectiveness of the IT risk program across the bank’s operations and suggest mitigation through implementing the IT risk management framework and workplan.
Key Result Areas:
1. Periodic review of activity logs / audit trails of the various bank IT systems and privileged accounts.
2. Organize and conduct system user access reviews and recertification on a quarterly basis.
3. Drive actions and enhancement of controls based on lessons learned from Root Cause Analysis for the high priority IT issues.
4. Conduct system risk assessments as per the Risk Management workplan.
5. Support the Manager IT Risk in checking and ensuring closure of technology related Audit issue Support the manager in coordinating IT Risk awareness in the bank through forums, training sessions etc.
7. Conduct Risk Assessments for ongoing projects.
8. Regularly review and monitor the Business Technology and Information
Security Key Risk Indicator and Risk Control Self-Assessment.
9. Conduct quarterly Vulnerability assessments (Network device tests,
Confidentiality, Integrity and Availability tests).
10. Perform any other duties as assigned by management from time to time.
Financial Responsibility: N/A
Person Specifications
Education & Training
1. Bachelor’s Degree in Information Technology, Computer Science, or a related
field.
2. Professional Certifications such as CISA, CISM, CRISC, CISSP, ISO 27001 is an
added advantage.
3. Practical training in IT Risk Management within the financial services sector is
preferred.
Skills & Experience
1. 3+ years Information Technology experience in areas of technology governance, risk management, control management or IT audit.
2. Demonstrate domain knowledge of IT infrastructure, application development/SDLC and information security.
3. Experience in IT Project management.
4. Must be a team player and possess excellent inter-personal skills; be an active listener; and possess good telephone and e-mail etiquette.
5. Extensive multi-tasking and prioritization skills.
6. Ability to work beyond official hours if required to do so.
7. Capability to maintain a high level of confidentiality.
8. Strong verbal and written communication skills.
9. Proactive self-starter demonstrates initiative and works independently with minimum supervision
Business Behaviours
• The ability to communicate clearly both verbally and in written form in a professional manner is deemed essential.
• Ability to build functioning working relationships across organizational, corporate, and cultural boundaries.
• Takes clear accountability and focuses on delivery of corporate goals