Tech Risk, Governance and Audit Specialist

This candidate will play a crucial role in developing and maintaining a robust culture of technology and cybersecurity risk governance across the organization.You will provide expert advise on reviewing and establishing ICT policies and will be responsible for conducting ICT audits.

Responsibilities:

• Develop the culture of Tech risk governance and management across the organisation, and ensure proper accountability in the management, tracking and reporting of tech and cyber risks.
• Develop and operationalise a sound and robust testing strategies, include test automation.
• Recommend the re-engineering and streaming of testing strategies and processes to enhance effectiveness of controls implemented.
• Present management reporting to stakeholders, with analysis of data and trends, and recommend next steps.
• Develop and operationalise a proactive audit management process and provide subject matter advice to internal stakeholders to comply with internal policies and standards.
• Review and establish ICT policies and process controls and conduct compliance checks.
• Enhance training and other materials in ICT risk management, document case studies and good practices.
• Support team lead and work with internal stakeholders to:
• Track and monitor tech projects and initiatives to meet compliance requirements.
• Track and monitor of Key Risk Indicators and Control Self-Assessment as part of Tech governance framework.
• Track and monitor incident reporting, including reviewing, monitoring, and reporting on the corrective measures and improvement areas.
• Participate in consultation and conduct gap analysis against new or revised requirements.
• Assess and seek waiver approvals for deviations and risk treatment strategies.
• Organise risk forums, including monitoring of action plans.
• Track remediation plans to address audit findings.
• Follow up on remediation actions, security and risk assessments with respective stakeholders and project and application managers.

Requirements:

• At least 5 years relevant experience in audit management, governance, risk and compliance management.
• Relevant certifications in IT governance i.e. CISA.
• Ability to work with cross-functional, multi-disciplined team to operationalise monitor security policies and procedures.
• Knowledge of Instruction Manual 8.
• Technical knowledge and practical experience in test executions.
• Relevant experience in data visualisation and analytics is preferred.
• Strong analytical, reasoning and problem-solving skills.
• Ability to work independently and assume responsibility for project deliverables.
• Experience in reporting and dashboard using JIRA.

This candidate will play a crucial role in developing and maintaining a robust culture of technology and cybersecurity risk governance across the organization.You will provide expert advise on reviewing and establishing ICT policies and will be responsible for conducting ICT audits.

Responsibilities:

• Develop the culture of Tech risk governance and management across the organisation, and ensure proper accountability in the management, tracking and reporting of tech and cyber risks.
• Develop and operationalise a sound and robust testing strategies, include test automation.
• Recommend the re-engineering and streaming of testing strategies and processes to enhance effectiveness of controls implemented.
• Present management reporting to stakeholders, with analysis of data and trends, and recommend next steps.
• Develop and operationalise a proactive audit management process and provide subject matter advice to internal stakeholders to comply with internal policies and standards.
• Review and establish ICT policies and process controls and conduct compliance checks.
• Enhance training and other materials in ICT risk management, document case studies and good practices.
• Support team lead and work with internal stakeholders to:
• Track and monitor tech projects and initiatives to meet compliance requirements.
• Track and monitor of Key Risk Indicators and Control Self-Assessment as part of Tech governance framework.
• Track and monitor incident reporting, including reviewing, monitoring, and reporting on the corrective measures and improvement areas.
• Participate in consultation and conduct gap analysis against new or revised requirements.
• Assess and seek waiver approvals for deviations and risk treatment strategies.
• Organise risk forums, including monitoring of action plans.
• Track remediation plans to address audit findings.
• Follow up on remediation actions, security and risk assessments with respective stakeholders and project and application managers.

Requirements:

• At least 5 years relevant experience in audit management, governance, risk and compliance management.
• Relevant certifications in IT governance i.e. CISA.
• Ability to work with cross-functional, multi-disciplined team to operationalise monitor security policies and procedures.
• Knowledge of Instruction Manual 8.
• Technical knowledge and practical experience in test executions.
• Relevant experience in data visualisation and analytics is preferred.
• Strong analytical, reasoning and problem-solving skills.
• Ability to work independently and assume responsibility for project deliverables.
• Experience in reporting and dashboard using JIRA.