Refer a friend

Connection matters

Referrer's Information

Referee's Information


file .txt, .doc, .docx, .xlsx, .pdf or .ppt only
Added 16 days ago

LocationHanoi

Job typePermanent

SalaryNegotiable

CategoryInformation Technology

ExperienceMore than 10 Years

IndustryFinance & Banking


Job summary

Job Responsibilities

Leadership and Strategy:

  • Develop and lead the IT risk management strategy in alignment with the bank’s overall risk appetite and regulatory requirements.
  • Collaborate with the CRO and senior leadership to ensure IT risk is integrated into the enterprise risk management framework.

Risk Identification and Assessment:

  • Identify, assess, and prioritize IT risks, including cybersecurity, data protection, technology operations, and third-party risks.
  • Conduct regular IT risk assessments and scenario analysis to evaluate potential vulnerabilities and exposures.

Policy and Framework Development:

  • Design and maintain IT risk management policies, standards, and guidelines.
  • Ensure the framework aligns with local regulations and global best practices (e.g., Basel, ISO 27001).

Monitoring and Reporting:

  • Establish key risk indicators (KRIs) and metrics to monitor IT risk exposure.
  • Prepare and deliver regular IT risk reports to the CRO, senior management, and the Board Risk Committee.

Regulatory Compliance:

  • Ensure adherence to local regulatory requirements related to IT risk and cybersecurity.
  • Serve as the primary point of contact for regulatory audits and inspections related to IT risk.

Incident Response and Resilience:

  • Lead the development of incident response plans and playbooks.
  • Coordinate IT risk responses to incidents and crises, ensuring timely remediation and communication.

Collaboration and Stakeholder Management:

  • Work closely with IT, cybersecurity, operations, and other business units to embed IT risk considerations into decision-making processes.
  • Engage with external stakeholders, including regulators, auditors, and vendors.

Team Management:

  • Build and lead a high-performing IT risk management team.
  • Provide mentorship, training, and career development opportunities for team members.

Experience requirements

  • Minimum of 10 years of experience in IT risk management, cybersecurity, or related fields, preferably in the banking or financial services sector.
  • Proven experience in leading risk management initiatives and teams.
  • Strong understanding of IT systems, cybersecurity frameworks.
  • Strong leadership with proven experience in leading a team of 10-20 subordinates.

Education requirements

  • Bachelor’s or Master’s degree in Information Technology, Computer Science, Risk Management, or a related field.
  • Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable.


Contact Person

  • Van Anh Nguyen
  • Adecco
  • Tel.