Job summary
As a Compliance, Conduct and Operational Risk Tech & Cyber Associate within our Tech Risk & Controls team, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards.
Job responsibilities
- Keep abreast of technology regulatory and legislative changes from financial and non-financial regulators.
- Perform targeted reviews of technology processes based on observed/emerging risks against laws, rules, and regulatory requirements.
- Work with Line of Business and Country Compliance on new regulatory events to understand key requirements and Compliance, Conduct and Operational Risk impact, if any.
- Independently assess first line of defense technology risk management and controls through participating in technology new product rollouts, new business initiative, change management.
- Perform technology & cyber risk assessments and challenge first line of defense by analyzing underlying data
- Participate in key first line of defense and second line of defense regional and global governance forums
- Prepare regional Compliance, Conduct and Operational Risk Tech & Cyber monthly reporting for various forums
- Manage, support and report regional regulatory activities such as RFI requests specific to Compliance, Conduct and Operational Risk Tech & Cyber and work with relevant partners and colleagues for materials.
- Maintain oversight of e-communication channels across region.
- Support Locally Incorporated Bank Compliance in Technology regulatory and compliance matters, where required.
- Drive and develop innovation and automation to streamline internal processes using Intelligent Solution Tools for regional Compliance, Conduct and Operational Risk Tech & Cyber.
Required qualifications, capabilities, and skills
- Bachelor’s Degree in Computer Science, Computer Engineering, Engineering, Information Security, Business Information Systems or related field or equivalent experience.
- Minimum 7 years of experience in Technology Risks, Cybersecurity, Compliance, IT Audit and/or Operational Risk within the financial services industry highly desired.
- Working knowledge and interest of current and emerging technologies.
- Demonstrated verbal and written communication skills and excellent analytical skills.
- Ability to understand complex technical systems and the business processes they support and assess the corresponding risks and controls.
- Understand technology risk management and control principles with a proven ability to anticipate and identify risks and effective mitigating actions.
- Strong organizational, project management, multi-tasking, and stakeholder management skills with demonstrated ability to manage expectations and deliver results with a high level of professionalism, self-motivation, and integrity.
- High level of professionalism, self-motivation, and sense of urgency.
- Bilingual fluency in English and Chinese (Spoken and Written).
Preferred qualifications, capabilities, and skills
- APAC technology regulation knowledge
- Familiar with intelligent solution tools e.g., Alteryx, UiPath is a plus.
- Professional certifications such as CISSP, CISA, CISM, CRISC, CCSP, CGEIT, AWS Cloud are beneficial.
- Track record of collaboration and relationship building