IT Risk Analyst, Up to $4,700

Recruit Express Pte Ltd| Date Posted: 19-Nov-2020
EA Licence No: 99C4599|EA Personal Registration No: R1104585
Save Job
Job Nature:
Permanent, Contract
Position Level:
Experienced
Qualification:
Diploma, Bachelor's / Honours

Job Description

 

Nature of Work

  • Supports the functional leadership team to manage IT risks and controls on a timely basis: o drive effective and prioritized risk management processes across each team 
    • unblock issues and hurdles and raises awareness
    • improve effectiveness of local risk forums
    • run risk workshops where appropriate
  • Coordinate remediation of risk and control gaps, providing and monitoring resolution actions owned by CIO areas (e.g. controls, issues, actions, key indicators)
  • Lead and report on Operational Risk and Control Management (ORCM) implementation and risk & control remediation robustly & at pace
  • Report and escalate on the status of the relevant risks and controls through established processes
  • Drive strategic risk assessment, and reviews of risk management over major change initiatives
  • Drive a robust process for risk event reporting and root cause analysis
  • Drive actions and enhancement of controls based on lessons learned from Root Cause Analysis 

Risks & Controls

  • Good understanding of MAS Regulations, ABS, ISO 27001 and PCI DSS.
  • Perform Threat Assessments, Control Assessments, Gap Assessments, Risk Assessments and Impact Assessments against Aviva Standards, Regulatory Requirements and Industry standards.
  • Operate as an SME and advise mitigation controls by working with control owners.
  • Identify, own and manage the specific key risks and/or IT controls and Business Protection standards that you are identified as the owner and/or nominee  
    • Ensure that issues and actions associated to controls / risks are remediated in a timely manner
    • Maintain appropriate records on GRC tool
    • Ensure that controls are sufficiently well designed and operating effectively to keep the risks that they mitigate within Aviva's tolerance level
    • Report and escalate the status of the relevant risks, controls and standards as appropriate

Resource Complexity

  • Accountable for prioritising own use of time to deliver the workload expected of the role while working within policy and guidelines and applying technical knowledge
  • May support a team through delegated tasks including: work scheduling, budget monitoring, coaching and problem solving, induction, training, and helping with recruitment and performance appraisal and development processes

Problem Solving 

  • Accountable for solving problems and dealing with difficulties in line with policy, process and other guidelines applying technical knowledge and expertise
  • Depending on the nature of the specific role, problems can range from repetitive daily issues to complex technical problems requiring significant expertise
  • Support front line staff by giving advice or by taking on accountability to resolve more complex problems
  • Escalate problems according to guidelines

Change

  • Accountable for recommending change based on expert know how and analysis of precedent and similar previous problems
  • Accountable for supporting planning and delivery of change and for recommending change to the risk mitigations processes and ways of working based on expert know how 
  • Take personal initiative in adapting to change and may be required to lead change in a team 

 

Internal Collaboration

  • Collaborate with stake holders involved in all aspects of risk management, for example:
    • Integrated Assurance Implementation teams
    • 2nd line Risk and Compliance teams
    • Internal Audit
    • Aviva Group counterparts
  • Day to day engagement with a range of local control owners and nominees involved in all aspects of Risk Management to ensure proactive and timely Risk mitigation
  • Work with stakeholders to track and drive completion of objectives and remediation actions within given deadlines.

External Collaboration

  • Build effective working relationships across relevant teams in external suppliers.
  • Play role as Subject Matter Expert in performing Information Security Risk Assessment and Third Party Information Security Assessment.

Timeframe

  • Longest target completion time of tasks likely to be 1-3 months, within a plan typically up to 12 months into the future, to ensure Risk mitigation plans are developed and executed in a timely fashion


Requirements
 

  1. Minimum of Diploma (IT and Relevant Disciplines)
  2. Minimum 3 -5 years’ of relevance working experience
  3. Understanding of MAS TRM regulations and notices
  4. Understanding of the CIO business, strategy and plans
  5. Strong analytical capability and background and ability to provide insight in a range of situations

Interested applicants, please Email [Click Here to Email Your Resume]

 

Jane Ng Wei Ling

R1104585

Recruit Express Pte Ltd

EA Licence No: 99C4599

 

We regret that only shortlisted candidates will be contacted.

Company Overview
Recruit Express Pte Ltd