IT Risk Officer - ShopeePay

Monee


Date: 5 hours ago
City: Manila
Contract type: Full time
Job Description

  • Oversight and implementation of IT Risk related activities in ShopeePay under RMO with compliance to BSP Circular 971, 808 and MORNBFI.
  • Manage and enhance ITRM (Information Technology Risk Management) system, frameworks, policies and procedures covering IT governance, Risk identification and assessment, IT controls implementation, Risk measurement and monitoring guided by BSP.
  • Provide assistance with the Risk Department Head in managing the process and validation of IT-Related Risk and Control Self Assessment.
  • Collaborate BCM in assessment and oversight of ShopeePay’s Disaster Recovery testing, and development of business continuity strategies for IT-related threat scenarios
  • Oversight and implementation of IT Outsourcing/Vendor Management process to ensure that the risks are identified, measured and controlled aligned with the BSP requirements and be able to provide independent views to the board and senior management on third party assessments.
  • Provide consultation or preliminary risk assessment and recommend whether independent risk assessment is required for the launch of critical systems or customer facing systems or major enhancements.
  • Lead the investigation of any technology or cyber-related frauds and incidents.
  • Establish and maintain the Information Security Risk Management Framework (“ISRM”), Information Security Strategic Plan (“ISSP”), Cyber Resilience framework (“CRF”), including cyber resilience objectives and risk tolerance.
  • Support in the collection of monthly IT-related key risk indicators (KRI) statistics for the KRI dashboard and management reporting.
  • Implement IT-awareness programs aimed at protecting SPP’s information assets and supporting infrastructure from internal and external threats.

Requirements

  • Bachelor’s degree in Information Technology, Computer Science, Risk Management, or a related field. Relevant certifications such as CISA, CRISC, CISSP, or CISM are preferred.
  • Minimum of 5 years of experience in IT risk management, information security, or a related field. Experience with BSP Circulars and familiarity with regulatory compliance in the financial sector is highly desirable.
  • Strong understanding of IT risk management frameworks, IT governance, risk assessment, and IT controls implementation.
  • Proficiency in developing and implementing IT risk management policies in compliance with regulatory requirements.
  • Experience in disaster recovery testing, business continuity planning, and IT outsourcing/vendor management.
  • Ability to conduct risk and control self-assessments, monitor key risk indicators, and provide independent risk assessments for critical systems.
  • Strong analytical and problem-solving skills for investigating technology and cyber-related incidents.
  • Excellent communication and collaboration skills for working with senior management, business continuity teams, and third-party vendors.
  • Detail-oriented with a proactive approach to identifying and mitigating IT risks.
  • Ability to work independently and collaboratively within a team to achieve organizational objectives.
  • Commitment to continuous improvement and staying updated on industry best practices and regulatory requirements in IT risk management

How to apply

To apply for this job you need to authorize on our website. If you don't have an account yet, please register.

Post a resume

Similar jobs

EMEA Compliance Officer(2nd Vice President)

Northern Trust, Manila
4 hours ago
About Northern TrustNorthern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of...

OF PORTFOLIO MANGEMENT HEAD

Bank of the Philippine Islands (BPI), Manila
2 days ago
The OF Portfolio Management Head is accountable for (and the voice of) the BPI OF Segment specific sub-portfolio customer – ensure that all touchpoints – product development / pricing, branding, channels, customer experience – continue to adapt around evolving customer needs.Support OF Segment Head to drive BPI OF client segment strategy specific to the sub- portfolio assigned – initiating analysis...

Relationship Manager - Corporate Banking

RCBC, Manila
3 days ago
Job SummaryResponsible for soliciting new customers, as well as developing and growing a designated portfolio of corporate customers through professional account/relationship management, marketing and delivery of bank products and services with the end in view of attaining mandated targets, maximizing profitability for the bank and at the same time ensuring the highest level of customer satisfaction among its corporate clients.How...