Talent.com
Senior Manager, Information & Technology Risk

Senior Manager, Information & Technology Risk

AEON BankKuala Lumpur, Kuala Lumpur, Malaysia
30+ days ago
Job description

AEON Bank WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

The Senior Manager, Information & Technology Risk (“SM”) is a managerial role responsible for leading the development, implementation, and oversight of the Bank’s cybersecurity and technology risk management framework. This role ensures compliance with regulatory requirements (e.g., BNM RMiT), drives cyber resilience initiatives, and manages risk assessments across technology domains. The incumbent will work closely with internal stakeholders, regulators, and third parties to safeguard critical systems and data, ensuring operational integrity and regulatory alignment. The role requires strong leadership, deep technical risk expertise, and the ability to balance security, innovation, and business needs.

In addition, the SM also plays a key role in identifying, assessing, and mitigating cyber and operational risks within their scope. This includes active engagement in risk governance processes related to technology operations oversight and reporting.

Job Responsibilities

Cybersecurity & Technology Risk Governance

  • Establish and manage cybersecurity policies and risk frameworks : Lead the development and ongoing refinement of cybersecurity governance, policies, standards, and procedures in line with regulatory and industry best practices.
  • Regulatory compliance : Ensure compliance with all applicable tech risk‑related regulations (e.g., BNM’s RMiT, tech standards) and serve as the liaison with regulators during audits, inspections, and inquiries.
  • Develop and lead risk assessment processes : Oversee enterprise‑wide and targeted cybersecurity and technology risk assessments, identifying control gaps, vulnerabilities, and emerging threats.
  • Technology risk registers and reporting : Maintain and update risk registers, perform risk ratings, and present findings and mitigation status to senior management and relevant risk committees.

System Implementation & Controls Assurance

  • Lead setup of cybersecurity and tech risk control systems : Oversee the implementation of systems and workflows related to technology risk monitoring, cybersecurity incident response, and regulatory tech risk compliance.
  • Vendor and third‑party risk management : Work with vendors and third parties to assess and ensure security and resilience of outsourced technology services.
  • BAU transition and governance : Once systems are implemented, manage transition to business‑as‑usual (BAU) operations with clear ownership, monitoring, and reporting mechanisms.

    • Project Oversight & Regulatory Engagement

  • Project governance : Ensure timely delivery of cybersecurity and risk‑related initiatives, escalating any issues that may delay compliance or increase risk exposure.
  • Regulatory interaction : Liaise with regulators on all matters concerning tech risk, cybersecurity, data governance, and incident response, ensuring the Bank’s positions and capabilities are clearly articulated and defensible.
  • Collaboration across the Bank : Work with key stakeholders in IT, Risk, Compliance, Legal, and Business units to ensure integrated risk management practices are embedded across all technology‑related processes.

    • Operational Resilience & Incident Readiness

  • Incident response preparedness : Lead or support cyber incident simulations, table‑top exercises, and development of playbooks.
  • Business continuity and disaster recovery : Support the design and testing of recovery plans related to critical technology systems and services.
  • Monitoring and metrics : Establish key risk indicators (KRIs) and security metrics to track effectiveness of the technology risk program.

    • Job Requirements

  • Bachelor’s degree in IT, Cybersecurity, Risk Management, or related field.
  • Relevant certifications preferred : CISSP, CISM, CRISC, CISA, or ISO 27001.
  • 8–12 years in cybersecurity or technology risk, preferably in financial services.
  • Familiar with regulatory frameworks : BNM RMiT, ISO 27001, NIST, COBIT.
  • Strong knowledge of IT risk management, cybersecurity controls, incident response, and third‑party / vendor risk.
  • Ability to interpret regulatory requirements and translate into actionable processes.
  • Excellent communication and stakeholder management skills.

    • Seniority level

    Mid‑Senior level

    Employment type

    Full‑time

    Job function

    Information Technology and Analyst

    #J-18808-Ljbffr

    Create a job alert for this search

    Information Manager • Kuala Lumpur, Kuala Lumpur, Malaysia

    Related jobs
    • Promoted
    • New!
    Global IT & Operational Risk Manager

    Global IT & Operational Risk Manager

    RBCKuala Lumpur, Kuala Lumpur, Malaysia
    A leading global financial institution in Kuala Lumpur is seeking a Manager for Operational & Information Technology Risk. The successful candidate will oversee controls, support risk events, and co...Show moreLast updated: 17 hours ago
    • Promoted
    • New!
    Technology Risk Management, Principal

    Technology Risk Management, Principal

    AIA Hong Kong and MacauKuala Lumpur, Kuala Lumpur, Malaysia
    Technology Risk Management, Principal page is loaded## Technology Risk Management, Principallocations : Kuala Lumpur, MY-AIA Malaysiatime type : Full timeposted on : Posted Todayjob requisition ...Show moreLast updated: 17 hours ago
    • Promoted
    Senior Executive - Information Technology (IT)

    Senior Executive - Information Technology (IT)

    MOG GROUP OF COMPANIESKajang Municipal Council, Selangor, Malaysia
    We are looking for an experienced and proactive IT Senior Executive / Assistant Manager to join our growing team.In this role, you will support critical IT infrastructure, ensure smooth day-to-day ...Show moreLast updated: 2 days ago
    • Promoted
    Regional Engagement Lead — Global Cybersecurity (Remote)

    Regional Engagement Lead — Global Cybersecurity (Remote)

    PositkaKuala Selangor, Kuala Selangor, Malaysia
    A boutique consulting firm is seeking a Regional Engagement Manager in Kuala Lumpur.This role requires 7+ years of experience in Project Management and fluency in Mandarin for client communication ...Show moreLast updated: 1 day ago
    • Promoted
    Assistant General Manager Information Technology & Information Security (Audit) Specialist (Con[...]

    Assistant General Manager Information Technology & Information Security (Audit) Specialist (Con[...]

    Telekom MalaysiaKuala Lumpur, Kuala Lumpur, Malaysia
    Assistant General Manager Information Technology & Information Security (Audit) Specialist (Contract).This role serves as a subject matter expert and advisor for the unit responsible for overseeing...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Senior IT Advisory Leader - Governance & Security

    Senior IT Advisory Leader - Governance & Security

    CNM LLPKuala Lumpur, Kuala Lumpur, Malaysia
    A technical advisory firm based in Kuala Lumpur is seeking an experienced professional for a full-time role in Information Technology. Responsibilities include conducting IT governance assessments a...Show moreLast updated: 17 hours ago
    • Promoted
    • New!
    Manager, GRM Operational & Information Technology Risk – Global Risk Oversight

    Manager, GRM Operational & Information Technology Risk – Global Risk Oversight

    RBCKuala Lumpur, Kuala Lumpur, Malaysia
    Manager, GRM Operational & Information Technology Risk – Global Risk Oversight.The GRM Operational Risk – Global Risk Oversight team in Malaysia is a centralized 2LOD group responsible for providin...Show moreLast updated: 17 hours ago
    • Promoted
    Chief, Integrated Risk Management & Tech Oversight

    Chief, Integrated Risk Management & Tech Oversight

    BusinesslistKuala Lumpur, Kuala Lumpur, Malaysia
    A leading financial services organization in Kuala Lumpur is seeking a Head of Integrated Risk Management.The role involves developing risk management frameworks, ensuring compliance, and mentoring...Show moreLast updated: 3 days ago
    • Promoted
    • New!
    Tech & Cyber Risk Governance Lead

    Tech & Cyber Risk Governance Lead

    AEON BankKuala Lumpur, Kuala Lumpur, Malaysia
    A reputable financial institution seeks a Mid-Senior level Senior Manager, Information & Technology Risk to lead the cybersecurity and technology risk management framework.The role involves ensurin...Show moreLast updated: 17 hours ago
    • Promoted
    Head of Integrated Risk Management

    Head of Integrated Risk Management

    BusinesslistKuala Lumpur, Kuala Lumpur, Malaysia
    Develop and oversee the implementation of integrated risk management frameworks and policies.Ensure compliance with regulatory requirements and internal risk protocols. Collaborate with cross-functi...Show moreLast updated: 2 days ago
    • Promoted
    Regional Engagement Lead — IT & Cybersecurity (Mandarin Bilingual)

    Regional Engagement Lead — IT & Cybersecurity (Mandarin Bilingual)

    PositkaKuala Lumpur, Kuala Lumpur, Malaysia
    A consulting firm is seeking a Regional Engagement Manager fluent in both English and Mandarin to lead Cybersecurity projects. The candidate will manage project delivery, drive client satisfaction, ...Show moreLast updated: 3 days ago
    • Promoted
    Technology Risk Management, Principal

    Technology Risk Management, Principal

    AIA Hong KongKuala Lumpur, Kuala Lumpur, Malaysia
    At AIA we’ve started an exciting movement to create a healthier, more sustainable future for everyone.As pioneering innovators for over 100 years, we’re now transforming our organisation to be fast...Show moreLast updated: 3 days ago
    • Promoted
    Director, IT Audit : Strategy, Risk & Controls Lead

    Director, IT Audit : Strategy, Risk & Controls Lead

    Prudential Services AsiaKuala Lumpur, Kuala Lumpur, Malaysia
    A leading financial services provider in Kuala Lumpur is seeking a Director of IT Audit.Responsible for providing independent assurance over internal control systems, managing audits, and leading a...Show moreLast updated: 3 days ago
    • Promoted
    Senior Director, Technology & Transformation

    Senior Director, Technology & Transformation

    Singtel GroupKuala Lumpur, Kuala Lumpur, Malaysia
    This role leads the technology and digitalisation agenda for Singtel’s Global Business Services (GBS) unit, driving IT enablement, process transformation, and digital innovation across different fu...Show moreLast updated: 1 day ago
    • Promoted
    Treasury IT Lead — Strategy, Systems & Compliance

    Treasury IT Lead — Strategy, Systems & Compliance

    BusinesslistKuala Lumpur, Kuala Lumpur, Malaysia
    A prominent financial services organization in Kuala Lumpur is seeking a leader for their Treasury IT team, responsible for managing IT systems and driving technological advancements.The ideal cand...Show moreLast updated: 3 days ago
    • Promoted
    Information Risk Management (IRM) Lead

    Information Risk Management (IRM) Lead

    ManulifeKuala Lumpur, Kuala Lumpur, Malaysia
    This position will be assisting the Chief Risk Officer in the management of Information and Technology Risk Management for Manulife Insurance Berhad in alignment with the mandates and objectives fr...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Deputy, Head of Information Technology

    Deputy, Head of Information Technology

    RAKUTEN TRADE SDN BHDKuala Lumpur, Kuala Lumpur, Malaysia
    Add expected salary to your profile for insights.The incumbent will work directly with Head of Information Technology (HOIT), assisting in the overall daily running of the IT Department.This will i...Show moreLast updated: 17 hours ago
    • Promoted
    Director, IT Audit

    Director, IT Audit

    Prudential Services AsiaKuala Lumpur, Kuala Lumpur, Malaysia
    Provide Group and Regional as well as relevant LBU senior management with quality and independent assurance opinions over internal control systems of the businesses through audit review, identifica...Show moreLast updated: 30+ days ago