GTS IT Business Assurance & Risk, Vice President

Tech Risk Management and Controls Understand and promote mandatory compliance of STT Tech risk policy and framework to FLoD Develop as needed and/or implement (based on head office) a baseline of additional IT controls and assurance process which will include all regional IT controls identified as part of the APAC FLoD activities. Establish and monitor technology risk indicators; working and partnering with SLoD of technology risk as applicable; facilitating a comprehensive and meticulously prepared strategy with well-defined action plans. Establish and monitor an effective oversight framework Regulatory and Corporate Audits Propose the necessary measures for achieving GTS compliance with internal and external regulations and ensure adherence Meet objectives for addressing issues raised by Corporate Audit and ETRM Work with IT audit for internal and external compliance assessments. Facilitate and oversee remediation of CATS and self-identified issues and provide consultation to process and control owners on management responses risk remediation methods and implementation plans. Communication and Governance Reporting Manage and maintain close oversight on all information security risk related incidents with a view to provide assurance that risks and impacts have been handled effectively Develop and implement real-time reporting mechanisms for security compliance and risk management that can meet regulatory needs and fulfill the aspirations of the risk committee Identify timely communicate and monitor high risk observations and technology risk incidents to SLoD and Executive Management. Escalate to Risk Committees including Global or Regional or Country heads of Asia Pacific business corporate functions CIO COO and CRO. Lead the efforts for effective IT risk governance IT risk management and reporting in GTS APAC in partnership with the different global GTS Business Assurance teams and in alignment with the global strategic direction. Requirements: Bachelor's degree in Business Information Technology or equivalent Over 8 years of IT Risk and Controls and/or IT Audit experience working for global financial institutions preferably in custody and asset management Sound understanding of the Asia Pacific regulatory requirements. Proven ability to translate complex regulations into well-defined action plans Knowledge in IT infrastructure and security experience in managing IT projects Professional security certificate holder such as CRISC (Certified Risk and Information Systems Control) CISA (Certified Information systems Auditor) certifications or equivalent CISSP or equivalent Excellent communication skills (verbal & written) with ability to write effective management reports Ability to manage multiple tasks for senior leaders and demonstrate analytical and documentation skills Ability to set own strategic goals and work with minimal supervision