Logo white

Job Summary

As a Manager within our Technology risk team, this role will oversee the organization’s comprehensive controls and Technology risk management program, identify, assess, monitor, control and mitigate Technology risks within organization, as well as advise company on potential risks within their information systems and technological needs to safeguard business goals and strategies. This role will work on a group-wide of Technology Risk including IT Compliance and IT Internal Audit. Promoting risk-awareness culture to all staff.

Job Description

  • Develop, establish, and implement Technology Risk Management frameworks, including policies, standards in compliance with SCBX group requirements, applicable laws and regulations.
  • Establish and perform the second line of defense subject matter expert for key stakeholders in matters related to Information Security and Technology Risk Management within organization.
  • Challenge and advise on risk assessment process which comprises analyzing, identifying, evaluating, and moniting & reporting risks that impact all business risks.
  • Ensure the IT Third-party Risk Management (IT TPRM) program aligns with internal policy, and external regulatory requirements.
  • Work closely with all stakeholders to identify risks, mitigate the risks while engaging third-parties to provide products and services to the company
  • Oversee the ongoing treatment of identified technology risks and ensure the remediation plans can be closed in a timely manner.
  • Regularly report to the company’s senior management and board of directors on the cybersecurity and technology risks and risk management practices.
  • Provide advice to Head of Risk Management on assurance and controls oversight related to technology risk
  • Create and maintain an external network with other Technology Risk managers, and relevant risk forums.
  • Collaborate and maintain good communication channels with other risk partners, such as Operational Risk Management, Compliance & Legal, People and Reputation risk.
  • Manage and lead a team of technology risk management professionals, providing guidance, coaching, and development opportunities
  • Promote risk culture awareness, provide education and training to employees inside the organization and the board members, senior management.


  • At least 5-7 years work experience with relevant second or third line of defense in IT risk experience preferred.
  • Experiences or strong passion in FinTech company or banking industry
  • Practical knowledge of Cyber & Technology risks, technical skills and practices.
  • Ability to lead direct reports and virtual teams

Knowledge & Skills

  • Strong knowledge of IT Third-party risk management.
  • Sound understanding of applicable laws, regulations, and industry best practices.
  • Professional certifications such as CRISC, CISSP, CISM, CEH, or ISMS are desirable.

Your consent required

If you want to message us, please give your consent to SCB TechX to collect, use, and/or disclose your personal data.

| The withdrawal of consent

If you want to withdraw your consent to the collection, use, and/or disclosure of your personal data, please send us your request.


Message sent

We have receive your message and We will get back to you shortly.