2026 Market Insights & Salary Guide
Explore the latest hiring trends and in-demand skills shaping the employment landscape in 2026 to guide your hiring strategies or job search.
- Posted 24 March 2026
- SalaryAttractive Remuneration Package
- LocationKuala Lumpur
- Job type Permanent
- DisciplineBanking & Financial Services
- Reference556064_1774336588
Back to jobs
Featured
Senior IT Risk Manager
Job description
About the Client
Our client is a leading financial services institution with a strong regional footprint, currently strengthening its technology risk and governance capabilities. As part of its ongoing digitalisation and regulatory commitments, the organisation is investing in building a robust IT risk management function to ensure effective oversight across technology, cybersecurity, and third-party environments.
Key Responsibilities
- Lead the identification, assessment, and monitoring of technology risks across applications, infrastructure, and digital platforms
- Drive the implementation and continuous improvement of IT risk management frameworks, policies, and governance processes in line with regulatory expectations
- Conduct independent technology risk assessments and challenge the effectiveness of controls across key initiatives, including cloud, digital, and transformation programmes
- Provide oversight on risk and control self-assessments (RCSA), issue management, and remediation tracking across technology and business teams
- Engage with regulators and internal audit on technology risk matters, including preparation of materials, responses, and closure of findings
- Partner with technology, cybersecurity, and business stakeholders to provide risk advisory on new initiatives, system implementations, and outsourcing arrangements
- Oversee third-party technology risk, including due diligence reviews, outsourcing risk assessments, and ongoing monitoring
- Support governance forums and committees by preparing risk reporting, dashboards, and risk acceptance papers
- Promote risk awareness culture across the organisation through training, communication, and continuous engagement
Requirements
- Bachelor's degree in Computer Science, Information Systems, Engineering, or a related discipline
- 10-15 years of experience in IT risk, technology risk, cybersecurity, or IT governance, with strong exposure within the financial services industry
- Solid experience in technology risk management practices, including risk assessments, control testing, RCSA, issue management, and governance reporting
- Strong understanding of banking regulatory frameworks such as BNM RMiT, MAS TRM, and relevant industry standards (e.g., ISO 27001, NIST)
- Good knowledge across technology and cybersecurity domains, including cloud, application security, infrastructure, vendor risk, and IT audit
- Professional certifications such as CISM, CRISC, CISSP, or CISA are highly preferred
- Strong stakeholder management and communication skills, with the ability to engage senior leadership, regulators, and cross-functional teams