Hiring.fm
Siam Commercial Bank

Technology Risk Assurance Senior Specialist

Bangkok Full time

สมัครโปรดคลิกที่ปุ่ม "Apply"

If you are an active SCB employee, please apply through Workday by searching "Find Jobs".

If this is your first time applying you will need to create a candidate account when you click on apply.

Job Description

Job Responsibilities

  • Lead and execute technology risk assessments, identifying potential vulnerabilities and threats across various IT systems and processes.
  • Conduct in-depth information technology audits to evaluate the effectiveness of internal controls and compliance with relevant policies and regulations.
  • Develop and implement IT risk management strategies, frameworks, and policies in line with industry best practices and regulatory requirements.
  • Perform detailed vulnerability assessments and penetration testing to identify and prioritize security weaknesses.
  • Provide expert guidance on cybersecurity and information security best practices, including IT security architecture and security controls.
  • Utilize investigative skills to analyze security incidents, identify root causes, and recommend corrective actions.
  • Collaborate with various business units and IT teams to embed risk management principles into project lifecycles and operational processes, leveraging Agile Methodology.
  • Contribute to the design and implementation of robust internal controls to mitigate identified technology risks.
  • Prepare comprehensive reports on technology risk posture, audit findings, and recommendations for senior management and stakeholders.
  • Stay abreast of emerging technology risks, cybersecurity threats, and regulatory changes to proactively adapt risk assurance strategies.


Job Qualifications

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree or relevant certifications (e.g., CISA, CISSP, CRISC) preferred.
  • Minimum of 5-7 years of experience in IT risk management, information security, or IT audit, preferably within the financial services industry.
  • Proven experience with Agile Methodology in a technology or risk assurance context.
  • Strong expertise in Cybersecurity and Information Security principles, frameworks, and best practices.
  • Extensive experience with Information Technology Auditing and assessing Internal Controls.
  • Demonstrated proficiency in IT Risk and Security Assurance, including IT Risk Assessments and Risk Analysis.
  • In-depth knowledge of IT Security Architecture and Security Controls.
  • Practical experience in conducting Vulnerability Assessments.
  • Excellent Investigative Skills for incident analysis and root cause identification.
  • Familiarity with Risk Management Information Systems.
  • Strong analytical, problem-solving, and communication skills, with the ability to articulate complex technical issues to non-technical audiences.
  • Ability to work independently and as part of a team in a fast-paced and evolving environment.

We're committed to bringing passion and customer focus to the business.

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us.