CAIA's Career Center is an easy-to-use, comprehensive resource connecting job seekers with employers in the growing AI field. Use your knowledge and credibility to advance your career or build a talented team for your organization. Opportunities targeted to CAIA Charterholders are prioritized.
In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
This exclusive role to Morgan McKinley is a Regional Head of IT Risk, APAC, reporting directly to the Global head of IT Risk. It will provide IT Risk guidance and direction in the region, working with regional Technology and Information Risk Management leads across all lines of business and is an influential role in ensuring consistent and prompt implementation of control initiatives
This role is expected to provide effective and accurate translation and interpretation of all IT Risk legislation and regulations within the region, linking them with internal policies and standards
To work as part of the region's technology teams to be effective in the implementation of IT Risk in all systems and technology, in addition to ensure a good level of understanding around the requirements of IT and IT Risk awareness and training. To provide sound guidance and leadership and enable leverage of security-solutions across multiple business lines in the region
This position will work closely with the regional IT Risk teams & Information Security teams to ensure any location differences are considered in the development of global information and resiliency risk policies, standards, guidelines, processes and metrics
Collaborate with Information Risk & Compliance Managers across lines of business to aggregate technical risks and findings in assets and systems to provide a holistic view of technology risk across a country location.
Assess the various information technology risks that the business faces in its operations and implement action plans, policy and procedural changes for risk avoidance and mitigation
Monitoring and analysis of regional technology key risk indicators.
Proactively identify potential risks based on changes to business models, technology models, and external trends.
Develop executive level reporting and communications to support risk-informed business decisions
Understand and can consult on information security standards and industry best practices
Identify and maintain variances in policies and standards for addressing country specific regulatory requirements. Review proposed IT Risk Policies and Standards for conformance and input of country requirements
Reinforce Information Risk Policies and Standards, and provide risk management support to businesses running in country.
Act as a coordination point for responses to any RFIs, audits or inspections.
Monitor and report implementation of key initiatives to local country management and regional teams.
Facilitate and assist with firm-wide technology control assurance in country locations
Interact with other relevant firm-wide control bodies (IT Governance, Audit, Operational Risk, Legal/Compliance, Resiliency Risk Management)
Promote and improve awareness of security threats, laws and regulations, policies and standards
The Successful Candidate
15+ years of IT experience, the majority of which should be in an IT Risk or Security role, preferably in the financial services sector
Broad based knowledge of IT Risk, IT Compliance, Security and disaster recovery/business continuity, with appropriate qualifications or certifications (CISM, CISA, CISSP or equivalent)
Broad knowledge or experience of working with regional regulators, Hong Kong, Australia, Japan etc
Significant analytical and critical thinking skills
Demonstrated technical abilities in multiple areas (e.g., technology infrastructure platforms or networks, application development, data protection, etc.)
Ability to manage multiple projects concurrently, work under pressure, and meet tight time commitments
Strong process orientation and understanding of operations and technology enabling candidate to provide support in the analysis, development and monitoring of controls
Ability to build and maintain collaborative working relationships with Information Technology and Business to design and assist in the execution of appropriate controls design and monitoring
Proven ability to develop and maintain senior level stakeholder relationships
Strong Program/Project Management and influencing skills
Excellent written and oral communication skills in English
Please apply direct or send your CV to email@example.com