Back to search
Orbix Holdings Company Limited Linkedin · Posted 22d ago

Senior Risk Management Specialist (IT Risk)

Pathum Wan

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

Responsibilities:


  • Conduct comprehensive risk assessments and audits of IT systems, applications, and infrastructure to identify vulnerabilities and potential threats.
  • Identify, address and prioritize IT risks including cybersecurity risks, IT operational disruptions.
  • Develop, implement, and maintain IT risk management policies, procedures, and standards in line with regulatory requirements and industry best practices.
  • Develop and implement controls to mitigate identified risks as well as ongoing risk monitoring.
  • Identify and manage risks associated with third party service providers to ensure they remain within the defined risk appetite.
  • Participate in incident response process, including identifying, managing, and reporting on security incidents and breaches.
  • Work closely with IT, IT security, compliance, business units and related party to integrate risk management into the organization’s overall strategy and operations.
  • Provide training and guidance to staff on risk management practices and security awareness to promote a culture of risk awareness throughout the organization.
  • Prepare and present risk assessment reports to senior management, highlighting key findings, trends, and recommendations for risk mitigation.
  • Work closely with internal and external auditors to monitor and ensure compliance with relevant laws, regulations, policies and standards.


Qualifications:


  • Bachelor’s or master’s degree in information technology, Cybersecurity, Risk Management, or a related field.
  • 3+ years of experience in IT risk management, cybersecurity, or a related field, with a focus on risk assessment and compliance.
  • Well-versed in IT risk and security management frameworks and standards, such as ISO 27001, ISO 31000, COBIT, and the NIST Cybersecurity Framework.
  • Certifications (optional): CISA, CISM, CRISC, CISSP.
  • Strong knowledge of risk management frameworks and best practices in information security.
  • Excellent analytical and problem-solving skills, with the ability to communicate complex concepts clearly to non-technical stakeholders.
  • Proven experience in incident response and security incident management.
  • Familiarity with regulatory requirements and standards applicable to the financial industry.


Successful candidate may be subject to a criminal background check. Where consent is legally required, the Company will seek your consent prior to conducting such check. The Company reserves the right not to proceed with the hiring process if the background check cannot be conducted.



Orbix Holdings gives an important to Privacy Notice for candidates, we’ll always treat your data with the utmost care. Please click on the links below to find out more about our Privacy Notice for candidates: https://www.orbixholdings.com/docs/Privacy%20Notice%20for%20Candidate.pdf

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent