Conduct risk assessments and analysis related to Digital & IT risks for products, new activities, operational initiatives, and IT projects.
Review and challenge internal policies, procedures, and guidelines from a Digital & IT risk perspective.
Analyze significant Digital & IT operational incidents, monitor corrective action follow-ups, and evaluate control effectiveness to minimize the risk of recurring incidents.
Perform monitoring and review of critical system controls, including user access management, system utilization, information security, and cyber resilience, in collaboration with the IT and Information Security units.
Manage the Digital & IT Risk Control Self-Assessment (RCSA) and Loss Event Database (LED) processes, including conducting socialization sessions, providing guidance to business units, reviewing assessment results, and preparing reports for management.
Prepare and maintain Digital & IT risk profile reports, including Risk Profile, TKB, Risk Appetite & Risk Tolerance, digital maturity, and cyber resilience, as well as present analysis and insights to Management
Requirements
Minimum Bachelor's Degree (S1) in a relevant field.
Minimum 3-5 years of experience in Risk Management, IT Risk, or Operational Risk, preferably within the banking or financial services industry.
Strong understanding of Digital and IT risk concepts, including system risk, information security, and cyber resilience
Familiarity with risk management processes such as Risk Control Self-Assessment (RCSA), Loss Event Database (LED), Risk Profile, as well as Risk Appetite & Risk Tolerance
