大手証券会社でのJapan IT Risk and Control Directorの求人

Overview：
IT Risk and Control plays a leading role in delivering a forward-looking and robust risk management framework across Technology globally. We are accountable for overseeing and challenging our Technology functions on the effective management of risk, and our role is pivotal from a regulatory perspective - influencing, for example, how regulators perceive Technology’s risk management framework.

This is an ED role, offering great potential for involvement across the IT organisation - IT Business units, and within our IT Risk and Control team globally − as well as interfacing closely with the Operational Risk department, Legal, Compliance, Regulatory Affairs, Vendor Management, Internal and External Audit and our Japan regulators including JFSA, BOJ, and SESC.

If you are looking for an opportunity to be at the heart of the Technology risk management, leveraging your hands-on experience in senior IT and IT risk management role, and sound knowledge of risk and controls principles, this may be an ideal opportunity for you. You will work with our IT Business Units and IT senior management to fully understand and actively manage the Firm’s Technology risk profile. In your risk management oversight role, you will be able to navigate a landscape of competing priorities − understanding where to strike the balance between managing risks and acknowledging or accepting certain risks. In this capacity you will be advising Technology management on those matters requiring their attention and those which are of lesser importance.

You will be a leader and role model within the IT Risk and Control and you will need to leverage your leadership and influencing skills to continue to develop a strong working relationship across our Technology teams globally and Business stakeholders.


Key Areas of Oversight and Engagement：
Further develop, enhance, and oversee the implementation of the IT policies, procedures, standards, and risk management methodologies;
Ensure the firm’s Operational Risk Management Framework, including the Firm’s Risk Management Enhancement Programme (RMEP), is demonstrably embedded with the IT Division and that Management Information (MI) is available to verify that;
Conduct controls testing and advise where control enhancements are required;
Oversee the annual Internal and External audits of the IT Division;
Participate in the firm’s risk management forums and committees as necessary , e.g.
Regulatory Affairs Forum, Operational Risk Management Forum, Technology Governance Forum etc.;
Liaise with the second and third lines of defence to ensuring that their requirements are
taken into account within the IT Division’s IT risk management framework;
Provide an IT risk advisory service to the IT Division and the firm generally;
Assess and advise on the risk management requirement for new and emerging technologies, e.g., Cloud, Secure by Design.

Requirements：
15+ of years of relevant risk & control experience within Investment Banking, Audit or consulting firms, or other related environment.
Native in Japanese and Fluent in English
Experience in leading the design and implementation of risk and control frameworks.
Experience in external statutory audit, internal audit and regulatory assessment facilitation including Japan financial regulatory inspections.
Understanding of Investment Bank, Global Markets and Wealth Management business and their technology and operations, risk management, internal audit, and compliance services.
Experience in risk and control framework design and control testing in Agile SDLC, Secure by Design, Data and AI, Cloud Governance, Third-Party and Business Resilience.
Effective written and verbal communication skills with strong adaptability and attention to details.
Possess strong analytical skills and an ability to quickly learn new products and systems.
Able to thrive in a constantly changing environment.
Audit, Governance, Security industry certification such as CISA, CISM, CRISC, CISSP, CPA, CMIIA or equivalent professional qualification