Job Description

Job Description: 

Summary
The Technology Risk Regulatory and Compliance Officer is responsible for ensuring compliance with regulatory requirements, particularly Bank Negara Malaysia's Risk Management in Technology (BNM RMiT) policy document, Securities Commission Malaysia’s Guidelines on Technology Risk Management, Labuan Financial Services Authority’s Guidelines on Technology Risk Management and internal technology risk frameworks. The role involves assessing, monitoring, and enhancing technology risk compliance and regulatory adherence across the BIMB Group..

Duties and Responsibilities:
Planning, Development, Reviewing & Reporting
▪Assist in planning technology compliance review/assessment
▪Assist in preparation of compliance review/assessment report
▪Establish technology compliance work program and review pack
▪Monitor the progress of issues tracking arising from compliance review/assessment
▪Monitor compliance status updates for monthly/quarterly reporting to management committee
▪Oversee User Access Matrix (UAM) review for regulatory system. (e.g Fibox, Kijangnet, ORION and etc) and other systems
Technology Compliance Review
▪Conduct regulatory reviews on technology / system related areas for BIMB Group
▪Conduct independent assessments on technology / system related areas based on the risk assessment outcome

Technology Compliance Liaison and Advisory
▪Assist in serving as liaison to auditors, consultants and regulators in relation to documentation and review of Technology Compliance in the Bank.
▪Liaise with other business units within the Bank in managing stakeholders’ enquiries or concerns on regulatory matters related to technology / systems.

Communication and Assessment on Regulatory Requirements
Disseminate, coordinate and identify regulatory requirements / submissions applicable to technology and information systems which includes (among others):-
▪Monitor timely communication and updates provided to the stakeholders on new and revised policy documents.
▪Engage with relevant stakeholders to perform compliance assessment / gaps analysis on new / revised technology regulatory guidelines.
▪Review compliance progress on gaps closure on BNM policy documents related to technology / system.
▪Review and ensure timely submission of related documents / requests to BNM.
▪Review policies and procedures applicable to technology / systems related matters to ensure its relevance with the applicable regulatory requirements.

Qualification
•Bachelor's degree in IT, computing, Information Systems or any related domains.
Years of Experience
•3 or more years of experience in any of these disciplines: Information security, risk management, audit and compliance in technology areas.
•Preferably someone from one of the top 4 consulting firms.
Specific Skills/Knowledge and Certification Required
1.Familiar with security / technology regulations, standards and best practices such issued by BNM, PCI-DSS, Paynet, Securities Commission and etc.
2.Working experience in Technology Risk Management / IT Governance / IT Compliance / IT Audit would be an added advantage.
3.Sound knowledge / understanding in the following areas:-
• Proficient understanding of financial institutions and underlying business processes
•Technology and cybersecurity policies and standards
•Risk assessment tools, technologies and methods
•Enterprise and operational risk frameworks
•Regulatory compliance
•Technology resiliency
4.Self-starter and able to work independently or with minimal supervision.

Job Requirements