Senior Manager / Manager, Divisional Control
About Dah Sing Group
The Dah Sing Group is a leading financial services group in Hong Kong offering banking, insurance, financial and other related services through its growing network of over 70 branches in Hong Kong, Macau and Mainland China.
Our currency is caring, teamwork and progressiveness. We accept that everyone is unique and different in talent, but alike in the capacity for growth. Our task is to shape a culture that creates a sense of pride in achieving something beyond just a job, and an environment where you can be your true and authentic self, like at home.
Main Responsibilities:
- Assist Information Technology Divisional Control Officer in maintaining/exercising oversight functions on key risks, controls, and enhancement initiatives, to ensure proper governance and control are in place and in line with the control strategy and objectives set out by the ITD.
- Play an active role in identifying compliance and internal control issues within the ITD.
- Conduct and review control self-assessment on governance, risk management and compliance to identify, assess, monitor, and mitigate risks, and ensure associated controls within the Division are in place and sufficiently robust.
- Closely work with ITD, business and operation units in conducting periodic assurance checks or quality assurance reviews on control activities over ITD.
- To conduct end-to-end process review for control enhancements and perform oversight of the implementation of remedial actions.
- Act as a gatekeeper role to exercise oversight and review on new business initiatives, products, activities, processes, and system (e.g. new product approval activities and major processes revision arising) and the implementation of mitigation measures in accordance with risk management and compliance framework.
- Cooperation with second-line risk and control units (i.e. AFD, GCD and ORD) to implement compliance, risk, and control enhancements. Support the review initiated by second-line risk and control units.
- Ensure ITD controls align with the Technology Risk Appetite Statement and internal control requirements.
- Implement adequate control measures and ensure key control measures are carried out and complied with relevant policies and regulatory requirements and mitigate emerging risks, covering but not limited to cybersecurity controls, EOS management.
- Conduct risk monitoring duties and escalate incidents and risk events to risk management/ compliance units and senior management in a timely manner and monitor the issue resolution to ensure timely actions are taken. Play as host for IT risk governance meetings.
- Implement and maintain risk and control tools to analyse and mitigate the risk and control issues within ITD.
- Participate in incident management, to identify control deficiency and ensure adequate preventive measures to be implemented.
- Report any events and observations over internal controls, risk, and compliance issue within ITD to risk and control units and provide updates to senior/top management, governance meetings the Operational Risk & Internal Control Committee regarding the risk and control environment within ITD.
Requirements:
- At least 10 years of relevant experience in banking IT field; with over 8 years in control implementation of information technology area.
- University graduate in Computer Science / Information Technology or equivalent.
- One or more certificates listed below: ISC2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified Cloud Security Professional (CCSP) as advantage.
-Good understanding of banking and regulatory environment.
- Strong communication skill, both in Chinese and English.
- Strong analytical, critical thinking and problem-solving skills (root cause, prioritisation, execution planning). Result oriented and able to deliver under pressure.
-Able to drive changes and strong execution ability.
-Mature and able to work independently under pressure.
Please note that only shortlisted candidates will be notified.
The Dah Sing Group is a leading financial services group in Hong Kong offering banking, insurance, financial and other related services through its growing network of over 70 branches in Hong Kong, Macau and Mainland China.
Our currency is caring, teamwork and progressiveness. We accept that everyone is unique and different in talent, but alike in the capacity for growth. Our task is to shape a culture that creates a sense of pride in achieving something beyond just a job, and an environment where you can be your true and authentic self, like at home.
Main Responsibilities:
- Assist Information Technology Divisional Control Officer in maintaining/exercising oversight functions on key risks, controls, and enhancement initiatives, to ensure proper governance and control are in place and in line with the control strategy and objectives set out by the ITD.
- Play an active role in identifying compliance and internal control issues within the ITD.
- Conduct and review control self-assessment on governance, risk management and compliance to identify, assess, monitor, and mitigate risks, and ensure associated controls within the Division are in place and sufficiently robust.
- Closely work with ITD, business and operation units in conducting periodic assurance checks or quality assurance reviews on control activities over ITD.
- To conduct end-to-end process review for control enhancements and perform oversight of the implementation of remedial actions.
- Act as a gatekeeper role to exercise oversight and review on new business initiatives, products, activities, processes, and system (e.g. new product approval activities and major processes revision arising) and the implementation of mitigation measures in accordance with risk management and compliance framework.
- Cooperation with second-line risk and control units (i.e. AFD, GCD and ORD) to implement compliance, risk, and control enhancements. Support the review initiated by second-line risk and control units.
- Ensure ITD controls align with the Technology Risk Appetite Statement and internal control requirements.
- Implement adequate control measures and ensure key control measures are carried out and complied with relevant policies and regulatory requirements and mitigate emerging risks, covering but not limited to cybersecurity controls, EOS management.
- Conduct risk monitoring duties and escalate incidents and risk events to risk management/ compliance units and senior management in a timely manner and monitor the issue resolution to ensure timely actions are taken. Play as host for IT risk governance meetings.
- Implement and maintain risk and control tools to analyse and mitigate the risk and control issues within ITD.
- Participate in incident management, to identify control deficiency and ensure adequate preventive measures to be implemented.
- Report any events and observations over internal controls, risk, and compliance issue within ITD to risk and control units and provide updates to senior/top management, governance meetings the Operational Risk & Internal Control Committee regarding the risk and control environment within ITD.
Requirements:
- At least 10 years of relevant experience in banking IT field; with over 8 years in control implementation of information technology area.
- University graduate in Computer Science / Information Technology or equivalent.
- One or more certificates listed below: ISC2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified Cloud Security Professional (CCSP) as advantage.
-Good understanding of banking and regulatory environment.
- Strong communication skill, both in Chinese and English.
- Strong analytical, critical thinking and problem-solving skills (root cause, prioritisation, execution planning). Result oriented and able to deliver under pressure.
-Able to drive changes and strong execution ability.
-Mature and able to work independently under pressure.
Please note that only shortlisted candidates will be notified.
Job ID 3777
Please Stay Alert to Potential Scams
We would like to remind you that eFinancialCareers is a job board and does not conduct hiring or ask for payment or any financial details as part of the job application process.
If you receive any suspicious messages claiming to be from us or a hiring company, we urge you not to click on any links and not to reply to the message itself.
Instead, please report the message to our support team at support@efinancialcareers.com.
It is advisable to always verify job offers directly with the hiring company.
The Dah Sing Financial Group is a leading financial services group in Hong Kong, active in providing banking, insurance, financial and other related s...
More Jobs From Dah Sing Financial Group
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Dah Sing Financial Group
Hong Kong
Boost your career
Find thousands of job opportunities by signing up to eFinancialCareers today.More Jobs Like This
Bank Of China (Hong Kong) Limited
Hong Kong
Bank Of China (Hong Kong) Limited
Hong Kong