371 Risk Manager jobs in Malaysia

Overview Operational Risk Assistant Manager (Risk Management) at Bank of China (M) Berhad will play a key role in implementing the operational risk management framework, policies and procedures, and ensuring programs are effective in measurement, monitoring, control and reporting of the Bank’s operational risk. This is a full-time position based in Kuala Lumpur head office.

Responsibilities

Assist the Director of MILO / immediate supervisor to develop and enhance the bank’s overall operational risk management governance framework aligned with parent company and regulatory expectations.

Support risk owners to ensure that activities are aligned with the Bank’s overall strategy and within the Bank / parent company’s risk appetite while ensuring adequate consideration and controls of potential risks in activities undertaken by the Bank.

Recommend suitable guidance to ensure effectiveness of operational risk management functions by working closely with relevant departments to provide independent input on business initiatives, new product development and rectification of risk issues identified.

Conduct impact / gap analysis on changes in local and/or international regulations related to operational risk management and coordinate changes in relevant policy, procedure and system.

Implement overall effective operational risk management program, which includes incident management and data collection, key risk indicators and operational risk self-assessment.

Conduct internal operational risk review and assess the adequacy of internal operational risk controls to manage operational risk.

Timely escalation of significant operational risk incidents to Director, MILO and Head of RMD, where applicable to enable informed judgement and immediate remediation action is initiated to mitigate the risk.

Support the timely preparation and reporting of operational risk to the risk committee and board risk management committee on identified operational risk issues/ findings, and relevant action plans.

Closely follow up and ensure effective closure of identified control deficiencies, audit recommendations, regulatory findings and anticipated requirements to continuously improve the operational risk model.

Communicate with the relevant business, technology partners, compliance and other teams while conducting detailed review of internal controls and processes that mitigate risk and facilitate compliance with applicable regulatory requirement.

Timely reporting and escalation of operational risk incident/ information to relevant party including parent company or regulator.

Stay alert on the changes in regulatory requirement on operational risk, new product development, business continuity management and complaint handling and the implication on the bank.

Assist to drive bank-wide program to promote and enhance risk awareness, knowledge and capacity across all departments in relation to management of key categories of risks across the bank.

Perform any other ad hoc functions as assigned by the Management / supervisor from time to time.

Requirements

Degree holder or above in related disciplines (professional qualifications or certification in operational risk management will be an added advantage).

Minimum 3-5 years of working experience with strong knowledge of banking regulatory environment and regulations (practical experience or exposure to operational risk management, compliance, or internal business control functions shall be preferred).

Good interpersonal and communication skill to build rapport with internal and external stakeholders.

Strong analytical skill.

Good command of both spoken and written English and Chinese will be preferred.

Benefits We offer competitive remuneration package and comprehensive fringe benefits including medical and life insurance, and different types of allowances to the right candidates.

Job Details

Job function: Accounting/Auditing, Analyst, and Quality Assurance

Location: Kuala Lumpur, Malaysia

#J-18808-Ljbffr

Overview

Senior Risk Manager role at Standard Chartered. Third-Party Cybersecurity Risk Assessor to join the cybersecurity team. Responsible for assessing and managing cybersecurity risks posed by third-party vendors, suppliers, and service providers, ensuring alignment with the organization’s information and cyber security standards. Aims to safeguard sensitive data, protect infrastructure, and enable secure digital ecosystems in a dynamic threat landscape.

Key Responsibilities

• Strategy: Support the Head of Third Party Security Risk in delivering the third party security risk program within the Bank.
• Business: Perform cybersecurity risk assessments on third-party vendors, suppliers, and service providers; lead due diligence assessments, security reviews, and continuous vendor risk monitoring; evaluate vendor responses to security questionnaires, attestations, and evidence artifacts; assess vendors' cybersecurity posture against standards (ISO 27001, NIST, GDPR, SOC 2, PCI-DSS) and best practices; analyse third-party cloud security controls, data protection measures, and threat management capabilities; document findings, provide risk ratings, remediation recommendations, and track actions to closure; partner with CISO, procurement, and business teams on vendor onboarding and contract renewals; continuously evolve and optimize third-party risk assessment methodologies and frameworks; leverage AI/ML tools and data analytics to enhance risk detection and predictive assessments; stay informed on cybersecurity trends, threat intelligence, and regulatory developments; support audits, regulatory reviews, and compliance assessments; communicate risk insights and reporting to executive leadership and stakeholders.
• Processes: Provide weekly and ad hoc reporting on the status of reviews; support training and awareness initiatives related to third party security risk; assist in program improvement initiatives; develop new/amended processes, innovative ways of working, and review risk and control assessments; assist in forward planning and prioritization of vendor assessments or requests from business stakeholders and resource allocations.
• People & Talent: Manage a register of third party security risks and ensure deficiencies are mitigated; support training and awareness initiatives related to third party security risk.
• Risk Management: Maintain a register of third party security risks and ensure deficiencies are mitigated; support compliance with relevant regulations; monitor and report on third party risk compliance; stay current on industry trends and regulatory requirements related to third party information security.
• Governance: Diligently provide weekly and ad hoc reporting on status of reviews.
• Regulatory & Business Conduct: Display exemplary conduct and live by the Group's Values and Code of Conduct; embed the highest standards of ethics; lead to achieve the outcomes in the Bank's Conduct Principles; identify, escalate, mitigate and resolve risk, conduct and compliance matters; may involve board-level responsibilities and authorities as applicable.
• Role Specific Technical Competencies: Communicate effectively in English; deep understanding of cybersecurity, data privacy, and regulatory frameworks; expertise in third-party risk management, cyber risk quantification, and vendor assessments; knowledge of AI/ML, cloud security (AWS, Azure, GCP), and Zero Trust; familiarity with vulnerability assessment, penetration testing, and red teaming; ability to analyze technical evidence and risk scenarios; strong stakeholder engagement and audit/project management skills; travel may be required for onsite vendor assessments; desirable experience in regulated sectors (banking, finance, healthcare) and knowledge of GDPR, CCPA, DORA; certifications such as CISSP, CCSP, CISA, CISM, CRISC, CRISC; knowledge of security frameworks (COBIT, ISF, COSO) and standards (ISO, NIST, CIS); competency with Microsoft Office Suite.

Qualifications and Experience

• Ideally 3 years in information security / IT auditing with Big 4 and/or Banking/Financial services exposure.
• Cybersecurity background with understanding of ICS/IT.
• Experience in third-party audits is a plus; necessary understanding of auditing standards, compliance, risk assessment, and internal control frameworks.
• Knowledge of security frameworks (COBIT, ISF, COSO) and standards (ISO, NIST, CIS); information security principles and regulatory requirements.
• Excellent written and interpersonal skills; strong risk management and ability to track emerging risks; ability to draft clear risk communications; strong stakeholder engagement; ability to manage multiple assessments in a fast-paced, agile environment.
• Optional certifications: CISSP, CCSP, CISA, CISM, CRISC, CRProp terms acceptable.

Benefits & Employment Details

• Competitive salary and benefits supporting wellbeing.
• Core retirement savings, medical and life insurance; flexible benefits available by location.
• Time off: annual leave, parental/maternity leave, sabbatical, volunteering leave; minimum 30 days annual leave and public holidays.
• Flexible working options based on location; wellbeing and development programs; inclusive, diverse culture.

About Standard Chartered

International bank with a long history and a focus on diversity and inclusion. The bank emphasizes purpose, values, and conduct principles, aiming to empower employees and communities.

We offer opportunities to grow and contribute to the bank's success while upholding ethical standards and regulatory compliance.

Note: This refinement preserves the information from the original listing while removing extraneous formatting and consolidating content into clearly structured sections using only allowed tags.

#J-18808-Ljbffr

First Digital Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

First Digital Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

10 hours ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

About us

First Digital is a digital asset focused trust, custody, financial technology company at the vanguard of the emerging digitalization of assets, where the full value for your worldly assets can finally unite like other digital data. Our best-in-class custodian and near-banking layer enables previously unattainable options for payments, asset management and access to products that can help enhance financial inclusion.

About us

First Digital is a digital asset focused trust, custody, financial technology company at the vanguard of the emerging digitalization of assets, where the full value for your worldly assets can finally unite like other digital data. Our best-in-class custodian and near-banking layer enables previously unattainable options for payments, asset management and access to products that can help enhance financial inclusion.

Our infrastructure – including FDUSD, Asia’s 1st home grown blockchain-based USD stable-coin – Developed to help economies, institutions and developers gain access to technology breakthroughs and capitalize on the digital evolution of finance, trust, and technology.

About the role:



We are seeking an experienced and proactive Senior Risk Manager to lead and enhance our group-wide risk management framework, with a particular focus on our stablecoin issuance business as well as the broader financial service activities offered by the Group. The primary responsibility of the Senior Risk Manager is to consolidate and formalise our existing risk management practices into a consistent, group-wide framework, ensuring clear oversight, alignment with regulatory expectations, and strong governance across the jurisdictions in which we operate.

The Senior Risk Manager will work closely with departmental teams, ensuring they retain responsibility for the execution of risk management processes and internal controls, while ensuring a central risk function provides oversight, challenge, coordination, and reporting. The candidate will collaborate with senior management, governance committees, and operational teams to support the integration of risk considerations in business decision making and everyday operations.

What you'll do:

• Update and maintain the risk management framework, covering all relevant risk categories including operational, compliance, financial, counterparty, liquidity, and technology risks.
• Act as the central coordination point for risk management, working closely with operations teams across the Group to ensure a coordinated approach to risk identification, mitigation and reporting.
• Support risk assessments for new products, jurisdictions, partnerships, and business lines, ensuring appropriate controls are in place before launch.
• Support the implementation and maintenance of the risk governance structure, including coordinating risk committees and reporting to operational leaders and the Board, where appropriate.
• Coordinate regular risk assessments and stress testing exercises, including scenario analysis relevant to stablecoin issuance, financial services, and digital asset operations.
• Assist in tracking and managing risk incidents, ensuring escalation processes are followed and lessons learned documented.
• Monitor the external risk environment, including evolving regulatory expectations, emerging risks in digital assets and stablecoin issuance, and changes in counterparties’ or service providers’ risk profiles.
• Foster a risk-aware culture across the group by providing training, guidance, and ongoing support to functional teams, helping them proactively identify and manage risks within their own areas.
  
  

What we're looking for:

• 5-10 years’ experience in risk management roles within financial services, with preference for candidates with experience in:
• Digital assets, or regulated stablecoin issuance.
• Risk oversight in regulated environments (payments institutions, digital asset firms, or licensed financial institutions).
• Understanding of prudential risk management, including:
• Capital adequacy and liquidity risk management frameworks.
• Governance expectations (committee structures, risk oversight at Board level).
• Operational resilience requirements.
• Experience maintaining risk frameworks that scale with business growth, in multiple jurisdictions.
• Previous experience working with regulators is preferable, responding to regulatory requests, and ensuring risk processes align with ongoing licensing conditions.
• Excellent communication skills, able to engage effectively with senior management, external advisors and with a global team.
• Fluent in English, with proficiency in additional languages considered a plus.
• Strong analytical mindset with the ability to translate complex risks into clear business actions.
• High attention to detail, with a proactive and solutions-oriented approach. Essential to be a self-starter.
  

Why Join Us?

• Competitive Compensation – We offer a remuneration package that reflects your expertise and contributions.
• Transportation Support – A monthly allowance to assist with your commute.
• Comprehensive Benefits – Life, medical, and dental coverage for your well-being.
• Professional Development – A US$4,000 education allowance to support your continuous learning.
• Career Growth – Strong prospects for advancement within a dynamic organization.
• Team Engagement – Regular activities to foster collaboration and a positive work environment.
  
  

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. This job description is intended to convey information essential to understanding the scope of the job and the general nature and level of work performed by job holders within this job. However, this job description is not intended to be an exhaustive list of qualifications, skills, efforts, duties, responsibilities or working conditions associated with the position. First Digital Trust reserves the right to amend this job description at any time.

Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Industries Construction

Referrals increase your chances of interviewing at First Digital by 2x

Sign in to set job alerts for “Senior Risk Manager” roles.

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 year ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 11 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Petaling Jaya, Selangor, Malaysia 1 day ago

SENIOR MANAGER - RISK, AUDIT AND BUSINESS CONTINUITY

Subang Jaya, Selangor, Malaysia 2 hours ago

Manager, GALCO (Balance Sheet Risk Management)

Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 10 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Bangsar South, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 10 months ago

Senior Manager, Audit & Consulting Services

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Senior Group Manager, Technology Risk Management

Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Bukit Jalil, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Business Manager, Shared Services Malaysia

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 months ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 4 months ago

Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 8 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 days ago

Senior Group Manager, Non-Financial & Operational Risk Management

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 months ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Associate Director, Risk and Control Governance (Bangkok Based, Relocation Support Provided)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 22 hours ago

Assistant Manager, Underwriting & Risk Management Analyst (General Insurance)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Assistant Director, Group Technology Risk Management

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Company Overview

Our Client is a Malaysia-based motorcycle hire-purchase financing provider offering quick approvals, flexible 12- 60 month installment plans, and up to 90% financing coverage.

They are seeking an experienced Credit Risk Manager with a strong background in banking or financial services to help strengthen the risk management practices and financing portfolio oversight. This role focuses on enhancing credit evaluation, portfolio monitoring, and regulatory alignment. The Credit Risk Manager will work closely with senior management to provide valuable insights and ensure the company maintains sound and efficient risk practices in line with industry standards.

Key Responsibilities

• Risk Practices & Governance
• Support the refinement of existing credit evaluation and risk practices.
• Provide guidance to ensure lending processes remain aligned with regulatory and industry standards.
• Recommend process improvements to increase operational efficiency in risk management.
• Credit Assessment & Insights
• Evaluate financing product applications (hire purchase and related credit facilities).
• Analyze customer credit profiles, behavioral patterns, and portfolio performance to provide insights for management.
• Offer recommendations on credit exposure and risk appetite thresholds.
• Portfolio Monitoring & Reporting
• Track and report on delinquency trends, portfolio concentration, and emerging risk patterns.
• Conduct stress testing and scenario reviews to support decision-making.
• Highlight areas of concern and suggest practical mitigation measures.
• Advisory & Collaboration
• Act as a key advisor to senior management on credit risk matters and portfolio health.
• Collaborate with finance, operations, and data teams to integrate risk perspectives into business strategies.
• Contribute insights to ongoing initiatives, including predictive modelling and portfolio analytics.

Requirements

• Bachelors or Masters degree in Finance, Economics, Business, Risk Management, or related fields.
• 5-10 years of experience in credit risk management within banking, financial services, or fintech.
• Strong knowledge of financing products (hire purchase, personal loans, or similar).
• Familiarity with regulatory frameworks and risk governance practices.
• Solid experience in credit analysis, risk frameworks, and portfolio management.
• Strong communication, problem-solving, and leadership skills.

Willing to work in Kapar, Selangor

#J-18808-Ljbffr

As a member of the risk management team, this role is responsible in supporting the implementation of risk management practices across the project. The role focuses on ensuring compliance with contractual obligation and driving continuous improvement in project performance through proactive risk management.

Key Responsibilities

• Implement risk management practices throughout the project life cycle.
• Manage the project’s risk management plan, leading efforts to minimize risk through planning, development, and consolidation of all risk activities.
• Adopt and facilitate the ISO31000 Risk Management methodology for the project.
• Coordinate quarterly, and annual risk management reviews / meetings with senior management.
• Facilitate / assist / lead / participate risk management workshops and meetings as directed.
• Lead / assist / participate risk management audits and review its reports.
• Assist in the preparation and presentation of risk management reports to the Senior Management, Project team, Client, Risk Committee, JV partners, and stakeholders as required.
• Continuously monitor the project against approved schedules and flag risks accordingly.
• Review and ensure that all significant project risks are effectively managed by risk owners, and implement action plans for mitigating newly identified risks.

Risk Identification and Mitigation

• Ensure the health and effectiveness of risk management implementation by identifying potential project risks, preparing risk mitigation plans, and ensuring these are communicated proactively.
• Conduct regular scheduled workshops/ meetings to review risk activities and milestones.
• Establishing and maintaining project risk register

Framework, Policy, and Procedures

• Assist in reviewing and enhancing the risk management framework, policies, procedures, reporting, and templates to align with project goals.
• Periodically evaluate and recommend improvements to existing risk management policies and methodologies.

Risk Analysis and Facilitation

• Perform qualitative and quantitative risk analysis on project cost and schedule using proprietary risk software.
• Maintain project risk registers using the available risk management database system and provide training to project personnel on its usage.

Stakeholder Engagement

• Establish strong relationships with internal and external stakeholders to ensure their requirements are integrated into project risk management.
• Ensure that issues and risk response actions are communicated in project reports to both internal and external stakeholders.

Project Integratio

• Assist in facilitating engagement with key project members to regularly review and update the status of risk registers and risk mitigation actions.
• Establish clear interfaces between risk management and other project disciplines to ensure seamless risk response integration.
• Assist the HoD in risk management presentations and reports for stakeholders, ensuring that complex risk-related issues are communicated clearly and effectivel

Risk Culture and Trainin

• Promote a risk-aware culture across the organization through training sessions to improve risk management awareness and competency.
• Assist in the presentation and workshops to key personnel to ensure a seamless understanding of risk management objectives and processes.
• Ensuring all risk management processes training are conducted to all relevant personnel

Lessons Learned and Continuous Improvemen

• Conduct lessons-learned sessions to extract project output insights and drive continuous improvement in risk management.

Qualifications

• BA or BSc first degree in a construction related field and ideally a specific risk management qualification (i.e. from IRM, PMI, etc.)
• Obtain specific risk management qualification (i.e. from PMI, IRM, etc.)

Skills & Abilities

Ability to use the risk software tools for Project, MS Excel, and ideally the risk database tool.

Expected Minimum Years of Experience

• Exposure to civil engineering design as appropriate for a graduate engineer.
• Exposure to risk management practices in accordance with ISO31000.
• Experience of project management practices including budget management and scheduling.
• Experience of the construction project life cycle from inception through to handover.

#J-18808-Ljbffr

Overview

Job description:

As a member of the risk management team, this role is responsible in supporting the implementation of risk management practices across the project. The role focuses on ensuring compliance with contractual obligation and driving continuous improvement in project performance through proactive risk management.

Project Risk Management

• Implement risk management practices throughout the project life cycle.
• Manage the project’s risk management plan, leading efforts to minimize risk through planning, development, and consolidation of all risk activities.
• Adopt and facilitate the ISO31000 Risk Management methodology for the project.
• Coordinate quarterly, and annual risk management reviews / meetings with senior management.
• Facilitate / assist / lead / participate in risk management workshops and meetings as directed.
• Lead / assist / participate risk management audits and review its reports.
• Assist in deploying risk management in decision making

Risk Reporting

• Assist in the preparation and presentation of risk management reports to the Senior Management, Project team, Client, Risk Committee, JV partners, and stakeholders as required.
• Continuously monitor the project against approved schedules and flag risks accordingly.
• Review and ensure that all significant project risks are effectively managed by risk owners, and implement action plans for mitigating newly identified risks.

Risk Identification and Mitigation

• Ensure the health and effectiveness of risk management implementation by identifying potential project risks, preparing risk mitigation plans, and ensuring these are communicated proactively.
• Conduct regular scheduled workshops/ meetings to review risk activities and milestones.
• Establishing and maintaining project risk register

Framework, Policy, and Procedures

• Assist in reviewing and enhancing the risk management framework, policies, procedures, reporting, and templates to align with project goals.
• Periodically evaluate and recommend improvements to existing risk management policies and methodologies.

Risk Analysis and Facilitation

• Perform qualitative and quantitative risk analysis on project cost and schedule using proprietary risk software.
• Maintain project risk registers using the available risk management database system and provide training to project personnel on its usage.

Stakeholder Engagement

• Establish strong relationships with internal and external stakeholders to ensure their requirements are integrated into project risk management.
• Ensure that issues and risk response actions are communicated in project reports to both internal and external stakeholders.

Project Integratio

• Assist in facilitating engagement with key project members to regularly review and update the status of risk registers and risk mitigation actions.
• Establish clear interfaces between risk management and other project disciplines to ensure seamless risk response integration.

Risk Communication

• Assist the HoD in risk management presentations and reports for stakeholders, ensuring that complex risk-related issues are communicated clearly and effectivel

Risk Culture and Trainin

• Promote a risk-aware culture across the organization through training sessions to improve risk management awareness and competency.
• Assist in the presentation and workshops to key personnel to ensure a seamless understanding of risk management objectives and processes.
• Ensuring all risk management processes training are conducted to all relevant personnel

Lessons Learned and Continuous Improvemen

• Conduct lessons-learned sessions to extract project output insights and drive continuous improvement in risk management.

Qualifications

• BA or BSc first degree in a construction related field and ideally a specific risk management qualification (i.e. from IRM, PMI, etc.)
• Obtain specific risk management qualification (i.e. from PMI, IRM, etc.)

Skills & Abilities

Ability to use the risk software tools for Project, MS Excel, and ideally the risk database tool.

Expected Minimum Years of Experience

• Exposure to civil engineering design as appropriate for a graduate engineer.
• Exposure to risk management practices in accordance with ISO31000.
• Experience of project management practices including budget management and scheduling.
• Experience of the construction project life cycle from inception through to handover.

#J-18808-Ljbffr

Company Overview Our Client is a Malaysia-based motorcycle hire-purchase financing provider offering quick approvals, flexible 12- 60 month installment plans, and up to 90% financing coverage.

They are seeking an experienced Credit Risk Manager with a strong background in banking or financial services to help strengthen the risk management practices and financing portfolio oversight. This role focuses on enhancing credit evaluation, portfolio monitoring, and regulatory alignment. The Credit Risk Manager will work closely with senior management to provide valuable insights and ensure the company maintains sound and efficient risk practices in line with industry standards.

Key Responsibilities

Risk Practices & Governance

Support the refinement of existing credit evaluation and risk practices.

Provide guidance to ensure lending processes remain aligned with regulatory and industry standards.

Recommend process improvements to increase operational efficiency in risk management.

Credit Assessment & Insights

Evaluate financing product applications (hire purchase and related credit facilities).

Analyze customer credit profiles, behavioral patterns, and portfolio performance to provide insights for management.

Offer recommendations on credit exposure and risk appetite thresholds.

Portfolio Monitoring & Reporting

Track and report on delinquency trends, portfolio concentration, and emerging risk patterns.

Conduct stress testing and scenario reviews to support decision-making.

Highlight areas of concern and suggest practical mitigation measures.

Advisory & Collaboration

Act as a key advisor to senior management on credit risk matters and portfolio health.

Collaborate with finance, operations, and data teams to integrate risk perspectives into business strategies.

Contribute insights to ongoing initiatives, including predictive modelling and portfolio analytics.

Requirements

Bachelors or Masters degree in Finance, Economics, Business, Risk Management, or related fields.

5-10 years of experience in credit risk management within banking, financial services, or fintech.

Strong knowledge of financing products (hire purchase, personal loans, or similar).

Familiarity with regulatory frameworks and risk governance practices.

Solid experience in credit analysis, risk frameworks, and portfolio management.

Strong communication, problem-solving, and leadership skills.

Willing to work in Kapar, Selangor

#J-18808-Ljbffr

Overview

Senior Risk Manager role at Standard Chartered. Third-Party Cybersecurity Risk Assessor to join the cybersecurity team. Responsible for assessing and managing cybersecurity risks posed by third-party vendors, suppliers, and service providers, ensuring alignment with the organization’s information and cyber security standards. Aims to safeguard sensitive data, protect infrastructure, and enable secure digital ecosystems in a dynamic threat landscape. Key Responsibilities

Strategy: Support the Head of Third Party Security Risk in delivering the third party security risk program within the Bank. Business: Perform cybersecurity risk assessments on third-party vendors, suppliers, and service providers; lead due diligence assessments, security reviews, and continuous vendor risk monitoring; evaluate vendor responses to security questionnaires, attestations, and evidence artifacts; assess vendors' cybersecurity posture against standards (ISO 27001, NIST, GDPR, SOC 2, PCI-DSS) and best practices; analyse third-party cloud security controls, data protection measures, and threat management capabilities; document findings, provide risk ratings, remediation recommendations, and track actions to closure; partner with CISO, procurement, and business teams on vendor onboarding and contract renewals; continuously evolve and optimize third-party risk assessment methodologies and frameworks; leverage AI/ML tools and data analytics to enhance risk detection and predictive assessments; stay informed on cybersecurity trends, threat intelligence, and regulatory developments; support audits, regulatory reviews, and compliance assessments; communicate risk insights and reporting to executive leadership and stakeholders. Processes: Provide weekly and ad hoc reporting on the status of reviews; support training and awareness initiatives related to third party security risk; assist in program improvement initiatives; develop new/amended processes, innovative ways of working, and review risk and control assessments; assist in forward planning and prioritization of vendor assessments or requests from business stakeholders and resource allocations. People & Talent: Manage a register of third party security risks and ensure deficiencies are mitigated; support training and awareness initiatives related to third party security risk. Risk Management: Maintain a register of third party security risks and ensure deficiencies are mitigated; support compliance with relevant regulations; monitor and report on third party risk compliance; stay current on industry trends and regulatory requirements related to third party information security. Governance: Diligently provide weekly and ad hoc reporting on status of reviews. Regulatory & Business Conduct: Display exemplary conduct and live by the Group's Values and Code of Conduct; embed the highest standards of ethics; lead to achieve the outcomes in the Bank's Conduct Principles; identify, escalate, mitigate and resolve risk, conduct and compliance matters; may involve board-level responsibilities and authorities as applicable. Role Specific Technical Competencies: Communicate effectively in English; deep understanding of cybersecurity, data privacy, and regulatory frameworks; expertise in third-party risk management, cyber risk quantification, and vendor assessments; knowledge of AI/ML, cloud security (AWS, Azure, GCP), and Zero Trust; familiarity with vulnerability assessment, penetration testing, and red teaming; ability to analyze technical evidence and risk scenarios; strong stakeholder engagement and audit/project management skills; travel may be required for onsite vendor assessments; desirable experience in regulated sectors (banking, finance, healthcare) and knowledge of GDPR, CCPA, DORA; certifications such as CISSP, CCSP, CISA, CISM, CRISC, CRISC; knowledge of security frameworks (COBIT, ISF, COSO) and standards (ISO, NIST, CIS); competency with Microsoft Office Suite. Qualifications and Experience

Ideally 3 years in information security / IT auditing with Big 4 and/or Banking/Financial services exposure. Cybersecurity background with understanding of ICS/IT. Experience in third-party audits is a plus; necessary understanding of auditing standards, compliance, risk assessment, and internal control frameworks. Knowledge of security frameworks (COBIT, ISF, COSO) and standards (ISO, NIST, CIS); information security principles and regulatory requirements. Excellent written and interpersonal skills; strong risk management and ability to track emerging risks; ability to draft clear risk communications; strong stakeholder engagement; ability to manage multiple assessments in a fast-paced, agile environment. Optional certifications: CISSP, CCSP, CISA, CISM, CRISC, CRProp terms acceptable. Benefits & Employment Details

Competitive salary and benefits supporting wellbeing. Core retirement savings, medical and life insurance; flexible benefits available by location. Time off: annual leave, parental/maternity leave, sabbatical, volunteering leave; minimum 30 days annual leave and public holidays. Flexible working options based on location; wellbeing and development programs; inclusive, diverse culture. About Standard Chartered

International bank with a long history and a focus on diversity and inclusion. The bank emphasizes purpose, values, and conduct principles, aiming to empower employees and communities. We offer opportunities to grow and contribute to the bank's success while upholding ethical standards and regulatory compliance. Note: This refinement preserves the information from the original listing while removing extraneous formatting and consolidating content into clearly structured sections using only allowed tags.

#J-18808-Ljbffr

As a member of the risk management team, this role is responsible in supporting the implementation of risk management practices across the project. The role focuses on ensuring compliance with contractual obligation and driving continuous improvement in project performance through proactive risk management. Key Responsibilities

Implement risk management practices throughout the project life cycle. Manage the project’s risk management plan, leading efforts to minimize risk through planning, development, and consolidation of all risk activities. Adopt and facilitate the ISO31000 Risk Management methodology for the project. Coordinate quarterly, and annual risk management reviews / meetings with senior management. Facilitate / assist / lead / participate risk management workshops and meetings as directed. Lead / assist / participate risk management audits and review its reports. Assist in the preparation and presentation of risk management reports to the Senior Management, Project team, Client, Risk Committee, JV partners, and stakeholders as required. Continuously monitor the project against approved schedules and flag risks accordingly. Review and ensure that all significant project risks are effectively managed by risk owners, and implement action plans for mitigating newly identified risks. Risk Identification and Mitigation Ensure the health and effectiveness of risk management implementation by identifying potential project risks, preparing risk mitigation plans, and ensuring these are communicated proactively. Conduct regular scheduled workshops/ meetings to review risk activities and milestones. Establishing and maintaining project risk register Framework, Policy, and Procedures Assist in reviewing and enhancing the risk management framework, policies, procedures, reporting, and templates to align with project goals. Periodically evaluate and recommend improvements to existing risk management policies and methodologies. Risk Analysis and Facilitation Perform qualitative and quantitative risk analysis on project cost and schedule using proprietary risk software. Maintain project risk registers using the available risk management database system and provide training to project personnel on its usage. Stakeholder Engagement Establish strong relationships with internal and external stakeholders to ensure their requirements are integrated into project risk management. Ensure that issues and risk response actions are communicated in project reports to both internal and external stakeholders. Project Integratio Assist in facilitating engagement with key project members to regularly review and update the status of risk registers and risk mitigation actions. Establish clear interfaces between risk management and other project disciplines to ensure seamless risk response integration. Assist the HoD in risk management presentations and reports for stakeholders, ensuring that complex risk-related issues are communicated clearly and effectivel Risk Culture and Trainin Promote a risk-aware culture across the organization through training sessions to improve risk management awareness and competency. Assist in the presentation and workshops to key personnel to ensure a seamless understanding of risk management objectives and processes. Ensuring all risk management processes training are conducted to all relevant personnel Lessons Learned and Continuous Improvemen Conduct lessons-learned sessions to extract project output insights and drive continuous improvement in risk management. Qualifications

BA or BSc first degree in a construction related field and ideally a specific risk management qualification (i.e. from IRM, PMI, etc.) Obtain specific risk management qualification (i.e. from PMI, IRM, etc.) Skills & Abilities

Ability to use the risk software tools for Project, MS Excel, and ideally the risk database tool. Expected Minimum Years of Experience

Exposure to civil engineering design as appropriate for a graduate engineer. Exposure to risk management practices in accordance with ISO31000. Experience of project management practices including budget management and scheduling. Experience of the construction project life cycle from inception through to handover.

#J-18808-Ljbffr