Support process owner in the bank in assessing non-financial risk, including operational, fraud, compliance, IT security, financial reporting and business continuity risk, and designing and testing control structures.
Proactively support process and IT application owners in assessing non-financial risk and designing controls.
Proactively support process and Information Security team in assessing non-financial risk and designing controls.
Facilitate risk & control self-assessment workshop.
Test the design and effectiveness of controls and report on the results of testing to senior management.
Develop product, process and IT control framework, including process mapping.
Advice/Consult and drive process owner to implement the control that can mitigate risk in the organization
QUALIFICATION:
Bachelor's degree in Computer Engineer, Computer Science or Management Information System
Preferably, Master's degree in Computer Engineer, Computer Science or Management Information System
Experience at least 4 years in an internal control, risk management or (internal or external) audit function and preferably have IT experience
In-depth knowledge of IT internal control structures and preferably have an in-depth understanding of administrative organization and internal control (AO/IC).
Fluent in English.
Good understanding of banking product and processes.
Good communication, convincing and advisory skill with the ability to work at all levels in the organization
Analytical skills, professionally sceptic and solution oriented
Being able to facilitate a workshop with 30 participants
