Expert, IT Operational Risk (Techcom Life)

Job Purpose

The job holder coordinates IT division activities and operations to ensure efficiency, effective risk control, and full compliance with internal policies, regulatory requirements, and the bank’s governance standards.

Key Accountabilities

IT Operational Risk Management & Control Assurance 

• Support the identification, assessment, and monitoring of IT operational risks across systems, processes, and ecosystem interactions.  
• Ensure effective risk mitigation plans are established, monitored, and executed in alignment with the bank’s IT risk management process.  
• Perform independent control reviews to validate the design and effectiveness of IT controls, including change management, access management, and other IT operations.  
• Work with IT, Security, and Business stakeholders to ensure timely closure of risk issues, incidents, and audit findings.  
• Provide insights and recommendations to strengthen IT control maturity and reduce operational risk exposure. 

IT Compliance & Governance Oversight 

• Ensure IT activities in operations comply with internal policies, regulatory requirements, security standards, and governance practices.  
• Support the development, maintenance, and communication of IT policies, procedures, and governance guidelines. 
• Monitor adherence to compliance requirements and report deviations or gaps to relevant stakeholders for timely remediation.  
• Coordinate with Internal Audit, External Audit, and regulators to ensure readiness, evidence quality, and effective response to findings. 
• Promote awareness and accountability for compliance across IT functions and ecosystem partners. 

Crossfunctional Coordination & Continuous Improvement in IT Risk & Compliance Practices 

• Coordinate with IT teams, business units, and ecosystem partners to enhance cross-functional risk and compliance practices.  
• Drive continuous improvement initiatives to standardize processes, uplift control maturity, and enhance operational efficiency within IT governance, risk management, and compliance.  
• Facilitate risk workshops, training, or communication sessions to strengthen risk culture and compliance awareness across the division.  
• Support the implementation of governance tools, dashboards, and reporting mechanisms to enable data-driven risk management.  
• Foster collaboration to ensure alignment of IT risk & compliance activities with enterprise-wide frameworks and strategy

Key Relationships - Direct Manager

Head of IT Governance

Key Relationships - Direct Reports

Key Relationships - Internal Stakeholders

Departments in company

Key Relationships - External Stakeholders

nhà cung cấp công nghệ, đối tác bảo mật, cộng đồng chuyên môn,...

Success Profile - Qualification and Experiences

Qualifications: 

• Bachelor’s degree or higher in Technology, Computer Science, Finance, Economics, Banking, Business Administration or related fields.  
• Relevant professional certifications such as CISA, CISM, CGEIT (COBIT), etc., are considered an advantage. 
• Intermediate English proficiency, with the ability to communicate and learn effectively, TOEIC 550 (expected level). 

Experiences: 

• Minimum 5 years of relevant experience in IT operation, IT compliance, IT internal control, IT audit and IT governance within banking, finance, technology environments or Big4 firms.  
• At least 3 years of experience in implementing or driving continuous improvement initiatives, process standardization, IT Risk and Compliance management or operational excellence programs.  
• Experience working with crossfunctional teams and ecosystems, with the ability to analyze, assess, and oversee risks across business and technology domains.  
• Prior experience in developing frameworks, policies, or risk/control methodologies is an advantage.