Associate Director, CS Risk

This role could be based in Malaysia and India. When you start the application process you will be presented with a drop down menu showing all countries, please ensure that you select a country where the role is based

The TTO ICS Risk and Governance has been set-up to provide best in class risk & control execution from both a 'Vertical' and 'Horizontal' perspective. Central Risk & Governance is one of the horizontal functions in TTO ICS team with the objective to ensure effective application of relevant Principal Risk Type Frameworks across TTO ICS, including the provision of relevant information to Risk Management and Oversight Forums, and to oversee the timely identification and resolution of emerging risks, issues, and findings. In addition, to raise the effectiveness and efficiency of risk and control management across all ICS domains

Associate Director, ICS Risk and Control LRM role is created under Cyber Security Service Risk and Control team for managing and responding to regulatory & external audit requests for information (RFI) related to vulnerability management infrastructure security & Application Security. This role requires an understanding of regulatory requirements, vulnerability assessment processes, and effective communication.

• Regulatory RFI Management :

o    Serve as the primary point of contact for regulatory RFI requests related to vulnerability management infrastructure security & Application Security domains.

o    Coordinate with internal teams to gather necessary information and documentation to respond to RFI requests.

o    Ensure timely and accurate submission of responses to regulatory bodies.

o    Collaborate with the Vulnerability Management team to understand current vulnerability management processes, tools, and methodologies.

o    Prepare comprehensive and clear documentation to support RFI responses, including detailed reports, summaries, and supporting evidence.

o    Ensure all documentation meets regulatory requirements and is presented in a professional manner.

o    Communicate effectively with internal stakeholders to gather necessary information and ensure alignment on RFI responses.

o    Identify opportunities to improve the efficiency and effectiveness of the RFI response process.

o    Implement best practices and standard operating procedures to streamline RFI management.

o    Assist with external audits related to vulnerability management and regulatory compliance.

o    Provide documentation and evidence to support audit activities and findings.

Risk Management

Regulatory & Business Conduct

Key stakeholders

Head Vulnerability Management and Infrastructure Security

Head Application Security and Assurance

AIC LRM team

Country CISO POCs.

Other Responsibilities

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we :

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.