Director - Technology Risk

1. At least 15+ years of experience in Technology Risk Management and / or Internal Audit experience

2. Knowledge of control design, risk assessment, and assurance methodologies

3. Understanding of technology and operational risks and controls

4. An information security/cloud (SAAS/PAAS/LAAS) related certification (CISA/CISSP/CISA/Lead Auditor for cloud/InfoSec) would be a plus

Key responsibilities :

Reporting to the manager Third Party advisor and Assurance , This role is critical in providing specialised services and advise across the Enterprise to ensure that third party risk is assessed appropriately.

This role is primarily responsible for:

1. Lead and manage a team of staff members to see end to end assurance reviews to ensure that services performed are consistent with requirements defined in the MSA/MOA

2. Conduct coaching sessions with team members including develop/deliver training programs / workshops on third party risk management processes to enhance risk awareness and maturity

3. Serve as subject matter expert on third party risk

4. Collaborate with cross functional teams such as but limited to sourcing, legal , security to ensure alignment and consistency in third party risk management processes

5. Providing advise and guidance to the business to ensure all outsourcing and third party arrangements are within the group risk appetite statement

6. Designing controls with control owners across the enterprise and facilitating documentation in a risk management system for targeted controls, confirming appropriate implementation of controls.