Information Risk Management Lead/Director
Location : Tokyo
Post Date : 24 May 2017
Employment Type : Permanent
Job Reference : AO28-BT
Job Classification : Business Transformation
"Are you looking for unlimited opportunities to develop and succeed?
With work that challenges and makes a difference, within a flexible and supportive environment, we can help our customers achieve their dreams and aspirations."
Information Risk Management Lead/Director - manage Japan information risk priority, execution and governance. This candidate will manage the Information Risk Council in Japan with senior IT, ORM and compliance members; besides, he/she will help manage FSA on cyber security matters.
With the increasing workload – increasing Information Services initiatives from regional level (i.e. ATO & Emerging Technology team) and local; year-to-date, Japan has to process 24 information risk assessment (which is 50% more than the average of other countries, except HK). The expected demand of increasing cloud initiatives and Japan regulator FSA Financial Services Agency involvement will further challenge the workload of the local Information Risk Management team with only one staff. In addition, the increasing demand on vendor information risk assessment process from global (i.e. including penetration test, physical site visit and annual assessment..) will also add loading especially for Japan (due to local-language translation requirement).
The new resource will contribute in improving services – be an enabler with more customer interface on risk/security requirements and explanation on key risk metric; peer review can be conducted within Japan to ensure the quality of country IRM work per countries. More proactive collaboration would be achieved with the IS development team on remediation per penetration test and application scanning activities. This IRM lead will formulate information risk management plan, solutions and guidance with line of business. As regular routine, the new stall will perform and validate information and vendor risk assessment identify potential risk, validate and provide guidance of risk mitigation and acceptance, conduct risk assessment Peer Review ensure the consistency and quality of risk assessments conducted.
Furthermore, this IRM lead will help corresponding with the growing pressure from rigorous local country regulatory and compliance requirements from Japan regulators’ FSA Financial Services Agency.