What Jobs are available for Compliance Head in Malaysia?
Showing 1 Compliance Head jobs in Malaysia
Information Risk Management (IRM) Lead
Kuala Lumpur, Kuala Lumpur
Manulife
Posted today
Job Viewed
Job Description
**The Opportunity**
This position will be assisting the Chief Risk Officer in the management of Information and Technology Risk Management for Manulife Insurance Berhad in alignment with the mandates and objectives from Global/Asia Information Risk Management (IRM) and regulatory requirements, as well as ensuring the company is compliant with the standards and guidelines of BNM Risk Management in Information Technology (RMIT) policy document.
**Position Responsibilities:**
+ Participate in governance of information risk management as 2nd Line oversight function to support the implementation of internal risk framework, practices, and controls.
+ Perform the 2nd Line IRM oversight on the Technology RCSA program, issues and the associated corrective action plan, and incidents.
+ Keep apprised of current and emerging risks which could potentially affect the company's risk profile.
+ Provide guidance and support on implementation of global technology initiatives.
+ Provide advisory and guidance on local information, cybersecurity and technology operational activities and regulatory risk to business.
+ Work closely with Asia IRM to ensure IRM assessment/s is/are aligned with Manulife Global Standards.
+ Work closely with local IT Governance to ensure holistic incident management, ensuring adequate communication, response and handling in the event of information/security risk incident/s and report to the management and regulator, if required.
+ Work closely with relevant stakeholders to assess privacy incidents, Data Leak Prevention (DLP) cases etc. and escalate to the management and regulator, if required.
+ Assume the Chief Information Security Officer (CISO) role and responsible for the technology risk management function of the financial institution and ensuring the company is compliant with BNM Risk Management in Information Technology (RMIT) policy document.
+ Advise on critical technology projects and ensuring critical issues that may have an impact on the company's risk tolerance are adequately deliberated or escalated in a timely manner.
+ Provide independent views to the board and senior management on third party assessments per RMIT and deliberate the outcome to the Board.
+ Conduct 2nd line review of cloud risk assessment of initiatives/projects involving cloud adoption and consider key risks and control measures (specified in RMIT Appendix 10) for BNM review and consultation sessions.
+ Perform periodic gap analysis of existing practices in managing technology risk against RMIT requirements and highlight key implementation gaps and ensure the company maintains continuous compliance.
+ Responsible for ensuring the company's information assets and technologies are adequately protected, which includes formulating appropriate policies for the effective implementation of TRMF and CRF, enforcing compliance with these policies, frameworks, and other technology-related regulatory requirements; and advising senior management on technology risk and security matters, including developments in the financial institution's technology security risk profile in relation to its business and operations.
**Required Qualifications:**
+ Holds a bachelor's degree in Information Technology (IT) or Information Security (IS)
+ 5 years' experience in IRM / Information Security related roles within the financial industry
+ Excellent technical skills in Technology Risk Management (TRM) and Information Security Management (ISM)
+ Excellent communication skills
+ Appreciation of different cultures
+ Professional certificate holder - CISSP, CRISC, CISA, CSSLP, or CISM and/or others
+ Experience in the following will be added advantage -Information Risk Assessment, IT/IS security controls review and Business continuity and disaster recovery
**_When you join our team:_**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido
This position will be assisting the Chief Risk Officer in the management of Information and Technology Risk Management for Manulife Insurance Berhad in alignment with the mandates and objectives from Global/Asia Information Risk Management (IRM) and regulatory requirements, as well as ensuring the company is compliant with the standards and guidelines of BNM Risk Management in Information Technology (RMIT) policy document.
**Position Responsibilities:**
+ Participate in governance of information risk management as 2nd Line oversight function to support the implementation of internal risk framework, practices, and controls.
+ Perform the 2nd Line IRM oversight on the Technology RCSA program, issues and the associated corrective action plan, and incidents.
+ Keep apprised of current and emerging risks which could potentially affect the company's risk profile.
+ Provide guidance and support on implementation of global technology initiatives.
+ Provide advisory and guidance on local information, cybersecurity and technology operational activities and regulatory risk to business.
+ Work closely with Asia IRM to ensure IRM assessment/s is/are aligned with Manulife Global Standards.
+ Work closely with local IT Governance to ensure holistic incident management, ensuring adequate communication, response and handling in the event of information/security risk incident/s and report to the management and regulator, if required.
+ Work closely with relevant stakeholders to assess privacy incidents, Data Leak Prevention (DLP) cases etc. and escalate to the management and regulator, if required.
+ Assume the Chief Information Security Officer (CISO) role and responsible for the technology risk management function of the financial institution and ensuring the company is compliant with BNM Risk Management in Information Technology (RMIT) policy document.
+ Advise on critical technology projects and ensuring critical issues that may have an impact on the company's risk tolerance are adequately deliberated or escalated in a timely manner.
+ Provide independent views to the board and senior management on third party assessments per RMIT and deliberate the outcome to the Board.
+ Conduct 2nd line review of cloud risk assessment of initiatives/projects involving cloud adoption and consider key risks and control measures (specified in RMIT Appendix 10) for BNM review and consultation sessions.
+ Perform periodic gap analysis of existing practices in managing technology risk against RMIT requirements and highlight key implementation gaps and ensure the company maintains continuous compliance.
+ Responsible for ensuring the company's information assets and technologies are adequately protected, which includes formulating appropriate policies for the effective implementation of TRMF and CRF, enforcing compliance with these policies, frameworks, and other technology-related regulatory requirements; and advising senior management on technology risk and security matters, including developments in the financial institution's technology security risk profile in relation to its business and operations.
**Required Qualifications:**
+ Holds a bachelor's degree in Information Technology (IT) or Information Security (IS)
+ 5 years' experience in IRM / Information Security related roles within the financial industry
+ Excellent technical skills in Technology Risk Management (TRM) and Information Security Management (ISM)
+ Excellent communication skills
+ Appreciation of different cultures
+ Professional certificate holder - CISSP, CRISC, CISA, CSSLP, or CISM and/or others
+ Experience in the following will be added advantage -Information Risk Assessment, IT/IS security controls review and Business continuity and disaster recovery
**_When you join our team:_**
+ We'll empower you to learn and grow the career you want.
+ We'll recognize and support you in a flexible environment where well-being and inclusion are more than just words.
+ As part of our global team, we'll support you in shaping the future you want to see.
**Acerca de Manulife y John Hancock**
Manulife Financial Corporation es un importante proveedor internacional de servicios financieros que ayuda a las personas a tomar decisiones de una manera más fácil y a vivir mejor. Para obtener más información acerca de nosotros, visite .
**Manulife es un empleador que ofrece igualdad de oportunidades**
En Manulife/John Hancock, valoramos nuestra diversidad. Nos esforzamos por atraer, formar y retener una fuerza laboral tan diversa como los clientes a los que prestamos servicios, y para fomentar un entorno laboral inclusivo en el que se aprovechen las fortalezas de las culturas y las personas. Estamos comprometidos con la equidad en las contrataciones, la retención de talento, el ascenso y la remuneración, y administramos todas nuestras prácticas y programas sin discriminación por motivos de raza, ascendencia, lugar de origen, color, origen étnico, ciudadanía, religión o creencias religiosas, credo, sexo (incluyendo el embarazo y las afecciones relacionadas con este), orientación sexual, características genéticas, condición de veterano, identidad de género, expresión de género, edad, estado civil, estatus familiar, discapacidad, o cualquier otro aspecto protegido por la ley vigente.
Nuestra prioridad es eliminar las barreras para garantizar la igualdad de acceso al empleo. Un representante de Recursos Humanos trabajará con los solicitantes que requieran una adaptación razonable durante el proceso de solicitud. Toda la información que se haya compartido durante el proceso de solicitud de adaptación se almacenará y utilizará de manera congruente con las leyes y las políticas de Manulife/John Hancock correspondientes. Para solicitar una adaptación razonable en el proceso de solicitud, envíenos un mensaje a .
**Modalidades de Trabajo**
Híbrido
Is this job a match or a miss?
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Compliance head Jobs in Malaysia !
0