ICT & Operational Risk Manager

• Lead the end-to-end ICT risk reporting cycle , including monthly monitoring and quarterly reporting deliverables • Support the ongoing implementation and enhancement of ICT risk frameworks across Asia • Drive regional initiatives such as cyber risk quantification and analysis • Partner with Group and regional stakeholders to interpret evolving digital and cyber risk requirements and ensure consistent application across markets • Work closely with local risk teams to ensure high-quality, accurate, and timely reporting aligned to global standards • Provide constructive challenge and guidance to improve risk assessments and reporting practices • Conduct deep-dive analyses and thematic reviews on key risk areas • Contribute to broader operational risk activities , including enterprise-wide risk assessments
• Around 5+ years of experience in operational, ICT, digital, or cyber risk—ideally within financial services or insurance • Proven ability to work in a regional or multinational environment , engaging stakeholders across multiple countries • Strong understanding of technology and cyber risk frameworks , controls, and mitigation approaches • Excellent analytical skills, with the ability to interpret complex data and identify meaningful trends and insights • Confident communicator who can simplify complex topics for senior stakeholders • Proactive, self-driven, and comfortable operating in a fast-paced, evolving environment
• Familiarity with frameworks such as ISO 31000, ISO 27001, COBIT, ITIL • Exposure to cloud transformation, AI, or digital initiatives • Relevant certifications (e.g. CISA, CISM, CRISC, CGEIT, ITIL, ISO 27001 ) • Broader experience in enterprise risk management and risk assessments