About UOB

United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of around 500 offices in 19 countries and territories in Asia Pacific, Europe and North America. UOB's purpose is to build the future of ASEAN. Our purpose guides The UOB Way – that defines our unique culture and belief system, anchored on our values of being Honourable, Enterprising, United and Committed, and our people philosophy of Care, Growth and Trust.

About the Department

UOB Innovation Hub 2 (InnoHub2) is a UOB-wholly owned subsidiary and a Centre of Excellence based in Malaysia, providing Group Business Services (GBS) to support the UOB Group. Started in 2021 with technology application design, development and support, InnoHub2 is expanding beyond technology services to deliver other business services to support the Bank’s growth ambition. We are looking for talented and motivated individuals to be part of the pioneer team spearheading the development and delivery of the new services.

As part of the InnoHub2 team, you will have the opportunity to work on Group initiatives and gain regional business exposure. We are dynamic, passionate and purposeful about delivering trusted financial solutions that enables business growth. An exciting career progression with varied opportunities awaits you at IH2. Come grow your career with us.

Job Responsibilities

Risk Management & Governance 

• The management and monitoring of all the operational risk arising within the IH2 Entity in line with group risk & governance policies and guidelines. 
• Support 1st line in identification, assessment and escalation of risk pertaining to the entity 
• Review and recommend resolutions to Risk related escalations from the functions keeping in mind Risk Appetite thresholds, policies and procedures. 
• Work with functions to clarify / interpret any policy related matters or queries. 
• Identify internal / external insights and emerging risks that can impact the entity. 
• Attend relevant risk committees representing Risk in advising, challenging and providing Risk insights to function stakeholders. 
• Training and Awareness: Cross-train and mentor other staff members as needed to embed risk culture within the organization 

Assurance Review 

• Use a range of sources and methods to obtain knowledge and apply judgment based on sound business knowledge of day-to-day assurance review work; this includes identifying and assessing key risks and designing testing to assess the design and operating effectiveness of the key controls in place to mitigate risk. 
• Occasionally participate in ad hoc projects and special investigations. The Technology Assurance Domain Lead works in a cooperative manner with subject matter experts (SME) and other teams from across the group in integrated assurance reviews and actively contributes to the delivery of team plans in support of the business and functions strategies under limited supervision. 
• Proactively develop and maintain professional consultative working relationships with the technology risk team, with internal stakeholders, and use a range of approaches to collect relevant and readily available information to assess risk, resolve issues or carry out tasks. 
• Have a good understanding of the relevant area's developments and continuously develop technical expertise relevant to the industry. 
• Plays the primary coordination role for any external audit or review on IH2 

Functions Continuity and Resilience 

• Responsible for the continuity planning to facilitate functions continuity and pandemic plans 
• Ensure support teams remain resilient during a BCP event by ensuring secondary locations (if applicable) has adequate resources, capacity and capability 
• Perform annual hub down tests for all domains and locations in scope (according to group requirements) 

Job Requirements

• Minimum 5 years of Technology Assurance or IT audit experience, preferably from the financial industry or Big 4. 
• Exposure to MAS Technology Risk Management guidelines is mandatory. 
• Certified Information Systems Auditor (CISA) qualification. 
• In-depth knowledge of banking or technology processes, banking products and the overall industry. 
• Experience in managing operational resilience risk 
• Understanding of Risk and Control Self - Assessment methodology including Control Design. 
• Well versed in technical security controls for at least one of the following areas: web security, network security, system security, DLP controls, IAM, etc. 
• Experience in usage of data analytics for IT audit or assurance work will be a strong plus. 
• Excellent communication skills (verbal, written and presentation) to deliver timely technology assurance reports to senior management and stakeholders. 
• Strong relationship management, analytical, problem solving, communication, influencing, planning and presentation skills. 
• Self-motivated and driven, able to work independently and lead small teams in some reviews/projects. 
• Able to work in a fast-paced functions environment. 
• Able to work in virtual, global teams in a matrix organisation, transfer knowledge and develop capability of team members. 

Be a part of UOB Family

UOB is an equal opportunity employer. UOB does not discriminate on the basis of a candidate's age, race, gender, color, religion, sexual orientation, physical or mental disability, or other non-merit factors. All employment decisions at UOB are based on business needs, job requirements and qualifications. If you require any assistance or accommodations to be made for the recruitment process, please inform us when you submit your online application.

Apply now and make a difference.

Competencies