AVP, IT Governance Risk and Compliance

Role Overview: You will be joining the First Line of Defence as an experienced IT GRC professional, responsible for driving IT governance, risk oversight, compliance management, and audit readiness in the region. Your role will focus on ensuring alignment with global, regional, and regulatory standards to enhance the overall technology risk posture. Key Responsibilities: - Develop, review, and report key IT risk metrics (KRIs, KCIs, KPIs). - Maintain and enhance IT risk frameworks, standards, and procedures. - Guide regional teams on IT risk methodologies such as ISO, NIST CSF, COBIT, COSO, SOX, and SOC. - Conduct IT risk assessments, manage the IT risk register, and enhance risk indicators. - Coordinate and manage the full audit lifecycle with internal/external stakeholders. - Support regulatory responses and ensure timely documentation of evidence. - Drive IT compliance assessments and follow through on remediation actions. - Ensure adherence to regional IT regulatory and corporate requirements. - Support the implementation of the Third-Party Risk Management (TPRM) framework. - Review IT controls for inter-affiliate engagements and ensure compliance with regulatory standards. - Support global, regional, and local technology initiatives. - Provide advisory on technology compliance and IT risk management. - Build and maintain strong stakeholder relationships. Qualification Required: - Bachelor's degree in Computing or related field. - Minimum 5 years of experience in IT GRC, IT Risk, IT Audit, or Technology Compliance. - Strong understanding of IT controls, cybersecurity risks, and APAC IT regulatory requirements. - Experience in 1LoD/2LoD/3LoD functions preferred. - Excellent communication, analytical, and stakeholder management skills. - Ability to work independently, manage deadlines, and deliver cross-functional outcomes. - Preferred certifications: CRISC, CISA, CISM. (Note: No additional details about the company were mentioned in the job description.),