Senior Manager, IT Risk, Compliance & Advisory

Senior Manager, IT Risk, Compliance & Advisory

AIA Group
Kuala Lumpur Malaysia
Not Specified
Not Specified

Job Description


Bring your career aspirations to life with AIA!• To provide an organizational structure and framework to the overall governance of technology and cybersecurity risk in AIA Bhd. and its associated local entities by developing, rolling-out and the monitoring of the Group AIA’s Cybersecurity Framework to manage technology and cybersecurity risk and improving the organization’s cyber resiliency.
• To monitor and measure the delivery of Cybersecurity strategy, and risks and make structural and strategic changes where necessary.
The role is responsible to ensuring the technology and cybersecurity risk according to the agreed acceptable levels of risk assigned to that role (including legal and regulatory compliance obligations).  It includes:
Information Technology and Cybersecurity Risk Governance
  • Establish and maintain a framework to manage technology risk and improve the organization’s cyber resiliency capabilities.
  • Recommend or Review the Information Technology and Cybersecurity Risk Appetite for AIA Bhd. for monitoring and reporting to the Senior Management and Board.
  • Develops the Information Technology Risk and Cybersecurity Governance & Control Strategy.
  • Strengthen and provide the right governance and controls oversight to technology and cybersecurity issues and risks.
  • Manage the technology and cybersecurity risk acceptance process.
  • Define, rollout and maintain IT and cybersecurity risk and control self-assessments.
  • Define and reporting the technology and cybersecurity risk metrics.
  • Control assurance oversight support to the Business Functions in the development, conduct and validation of technology and cybersecurity risk management activities including technology and cybersecurity risk self-assessments, risk deviations, risk metrics and associated response/mitigations.
  • Support internal/external audit on IT and IS controls assessment and regulatory control compliance assurance.
  • Supporting the development, implement and monitor a strategic, comprehensive enterprise information security program in alignment with AIA Group Corporate standards and policies to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed by the organization.
  • Ensure that security programs are meeting the applicable local laws, regulations and policies to minimize or eliminate the risk and audit findings.
  • Facilitate information security governance through the implementation of a hierarchical governance program, including the facilitation of information security working committee.
  • Monitor the external threat environment for emerging cyber threats and advise the relevant stakeholders on the appropriate course of action.
  • Regular reporting on the current status of the information security program to senior business leaders and the board of directors as part of a strategic enterprise risk management program.
  • Perform third party security risk assessments and third-party security risk reporting to identify supply chain security risks.
  • External and Internal Audits oversight.

Information Technology and Cybersecurity Policies and Standards
  • Develop, maintain and publish up-to-date information security policies, standards, procedures and guidelines.  Oversee the approval, training, and dissemination of security policies, standards and practices (including awareness programs)
  • Monitoring, attesting the controls compliance with cybersecurity policies within the IT department.
  • Propose changes to existing Group policies, standards and procedures to ensure operating efficiency and local regulatory compliance.

Cyber Training and Awareness
  • Build and manage AIA Bhd. employee-wide Information and Cybersecurity awareness program.
  • Provide information and cybersecurity communication, awareness and training for general employee, targeted critical employee, management and board members.

Build a career with us as we help our customers and the community live healthier, longer, better lives.
You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.

Job Details

About AIA Group

For a century, we have served millions of people and generations of families all around the Asia-Pacific region.AIA is the largest independent publicly listed pan-Asian life insurance group – with a presence in 18 markets across the Asia-Pacific region.Our Vision is to be the world’s pre-eminent life insurance provider. That is our service to our customers and our shareholders.Our Purpose is to play a leadership role in driving economic and social development across the region. That is our service to societies and their people.Our Promise to help people live Healthier, Longer, Better Lives.

Similar Jobs

Career Advice to Find Better