SVP/VP - Infrastructure, Technology Risk Manager, Tech COO, Group Technology

DBS Bank

Singapore
Education
Industry
Benefits
Skills
Experience
Other
Apply
10,000+ Similar Jobs

SVP/VP - Infrastructure, Technology Risk Manager, Tech COO, Group Technology - (WD75039)

Job Summary

  • Technology is key to enabling the DBS vision of being the leading bank in Asia. To meet the challenges arising from the ever-evolving technological advancements and increasing sophistication and demands of customers, there is a need for deft Technology Risk Managers to ensure robust risk governance.
  • As a member of the Technology Risk Management team, you will oversee a global portfolio of technology risk management activities (includes participating in any technology risk management related initiatives), with a focus on:
    • Targeted Risk Reviews
    • Policy/Standard/Guide enforcement validation
    • Thematic risk analysis for IT risks
  • This role ensures that DBS Bank’s technology risk framework aligns withglobal regulatory requirements (MAS, HKMA, RBI, GDPR, etc.)and industry best practices (NIST, ISO 27001, COBIT), and internal policies while identifying vulnerabilities and recommending mitigation strategies.
  • The position requires a strategic leader who canidentify systemic risks, drive audit remediation, and enhance governance across all regions where DBS operates.
  • Cross-discipline exposure to open source, virtualization/cloud, automated processes, platform, storage, network, desktops, servers, security, DevOps, etc., are essential for this position.

Job Duties & Responsibilities

  • Accountable for managing internal and external reviews/audits from audit planning (such as request for information (RFI), opening meeting, etc.), fieldwork (such as RFI, issue discussion, etc.), to reporting and closing meeting.
  • Responsible for monitoring and validating the closure of management actions, arising from internal and external reviews/audits, including regulator inspection reviews.
  • Perform review of new / revised processes, provide risk opinion and ensure proper approvals and documentations.
  • Collaborate with the different technology teams to conduct post implementation review of new / revised processes to provide assurance.
  • Prepare and develop technology risk insights (such as IT audit thematic and trend analysis) to be presented at forums (such as technology risk forums, etc.).
  • Engage and collaborate with technology stakeholders to proactively identify risks at a detailed and technical level and ensure that IT is effectively driving remediation activities and to continuously improve IT risk posture.
  • Proactive in forging effective engagement with key stakeholders relating to risk & control matters.
  • Drive automation (e.g., data analytics, AI/ML) for continuous auditing.
  • Proactively staying ahead of regulatory changes and digital banking risks.
  • Provide risk assessment and advisory as required:
    • Understand operating environment and evaluate the effectiveness of IT risk governance, security policies, and control frameworks. Design security, risk and control metrics, when required.
    • Provide actionable recommendations to senior management for risk mitigation.
    • Subject matter expert in IT Infrastructure and process controls (across open source, virtualization/cloud, automated processes, platform, storage, network, desktops, servers, security, DevOps etc.).
    • Provide technical training and mentorship to develop IT audit capabilities and professional practices, where required.
  • Manage technology risk initiatives and target reviews (pre-audit) on infrastructure domain by:
    • Collaborating with tech teams in maintaining IT Infrastructure processes/ controls universe for target review planning.
    • Identifying key IT infrastructure (gaps in operation/process/vulnerabilities) associated risks for inclusion in target review.
    • Executing target reviews according to the approved annual plan on a timely basis within approved resources and budget.
    • Conducting the opening and closing meetings with relevant stakeholders and tracking the recommendations until closure.
    • Enhance IT audit digital techniques and tools (including analytics, scripts, automation, Gen AI) to increase efficiency and effectiveness of target reviews.

Required Experience

  • Possess a university degree related to information technology, information security, computer science, computer engineering or related fields
  • At least 12 years (SVP) / 8 years (VP) of experience preferably with exposure on technology risk management (in risk control and audit function) in IT infrastructure domain within financial services industry.
  • Demonstrated experience in identifying, assessing and advising on technology risks and control in a cross-discipline technology environment within financial institution.
  • Good understanding of regulations (from MAS, RBI, HKMA etc) and industry standards (e.g ISO, NIST, ITIL and cybersecurity framework etc).
  • Experienced IT risk professional with exposure to Agile, DevOps, SRE and cloud technologies in either banking, IT risk management, security-related or IT audit (preferred).
  • Subject matter expertise in IT Infrastructure development, support and management with the knowledge of technology platform and solutions including but not limited to the following areas:
    • virtualization, open source
    • multi-cloud environments
    • operating systems, databases
    • automated processes
    • platform and storage
    • desktop and servers
    • network (protocols, load balancing, routing, switching and management)
    • outsourced vendor management
  • Knowledge of cybersecurity solution (IDS, IPS, firewall management, anti-virus, content filtering, secure email solutions, network sniffing, log management & analysis, forensics, VPN) will be an added advantage.
  • Demonstrated experience of leveraging data and analytics to obtain stakeholder buy-in is a plus.
  • Excellent organizational, problem solving, interpersonal and operating skills to effectively drive the IT Risk agenda with IT functions.
  • Strong communication skills at all levels -- able to effectively communicate with IT and senior management, as well as line staff to drive IT risk mitigation initiatives and other IT risk management related areas.
  • Strong interest in learning about latest regulation, emerging technologies, system vulnerabilities and technology risk trends to maintain relevance in the rapidly evolving technological landscape.

Soft Skills:

  • Strong executive communication(for Technology EXCO-level reporting).
  • Ability to translate technical risks into business impact.
  • Leadership in driving cultural change toward risk awareness.

Education & Certifications:

  • Bachelor’s/Master’s in Computer Science, or related field.
  • Certifications (Required):CISA, CISSP, CRISC, CISM, or equivalent.
  • Preferred:ISO 27001 Lead Auditor, AWS/Azure Security, CCSP.
  • en

Primary Location

: Singapore-DBS Asia Hub

Job

: Technology

Schedule

: Regular

Employee Status

:

Full-time

:

Job Posting

: Jun 20, 2025, 2:58:59 AM

Read Full Description
Apply
Jobs at DBS Bank
Similar Jobs
Confirmed 9 hours ago. Posted 2 days ago.

Discover Similar Jobs

Suggested Articles

Leaving Consulting: The Why, When, How and What For?
How To Get Into Investment Banking
My Story Recruiting into Finance as an Engineering Major
7 Reasons To Pursue A Career in Wealth Management
The Junior Banker Lifestyle is About to Get Better
How to Succeed at the Investment Banking Internship

Roles for Junior Investment Bankers

Mid-Level and Senior Investment Banking Jobs