Senior Manager Technology Assurance

JOB DESCRIPTION

PURPOSE

Lead the overall technical assurance definition and execution of the Technology Assurance framework and programs that guide, monitor, evaluate and report on the efficiency of the internal controls related to technology.

Be the subject matter and provide expertise level guidance on compliance requirements related to technology for control/process documentation, testing and issue management.

Lead and drive the collaboration with Group InfoSec Governance to effectively assess the critical and key gaps against standards, as well as international and local regulatory requirements related to technology.

Lead and manage the Technology assessment at an expert level and evaluate and advise the overall design and effectiveness of all key technology controls throughout the business cycle.

KEY ACCOUNTABILITIES

Contribute and support the Head of Technology Assurance & Information Security Governance in defining, developing andmaintaining technology assurance framework in all the Company's markets in accordance with the Group Technology Roadmap.

Work closely with senior management of business units and within Group Technology through tracking and reporting function, to ensure regular updates to management on the Technology Assurance programs.

Be accountable for the planning, managemen tand execution of the day-to-day activities of Technology related audit engagements.

Ensure system and control owners are identified; and coordinate with owners to support technology assurance and assessment activities.

Collaborate with key technology, business, risk, audit and compliance teams to identify, evaluate and address critical technology related risks.

Proactively research industry trends anddefine, influence and implement appropriate and practical technology related KRIs, metrics and solutions to create and enhance process efficiency and address key risks.

Define, oversee and ensure all test scenarios for effectiveness of the internal controls and provide guidance to remediate the deficiencies/ weaknesses.

Ensure the Company readiness for IT Security Internal/External audits.

Advise BUs on Technology risk assessment.

KEY PERFORMANCE INDICATORS

Guide the Company's markets in adoption of the technology assurance framework.

Working on a group level work with all stakeholder to gather and organise and deliver key business requirements.

Ensure the accuracy and consistency of the technology assurance program.

Meet the objectives of the program within the defined timelines.

Improve the visibility of technology controls, risks and vulnerabilities.

Ensure Technology controls are compliant against required standards/ benchmarks and best practices.

Ensure timely implementation of recommendations for remediating the weaknesses/deficiencies.

Keep pace with changes in technologies in support of IT/Security compliance programs.

Doing things right, creating synergies for the overall the Company's goals and objectives, along with a people first approach.

EXTERNAL & INTERNAL CONTACTS

Group Head of Information Security Governance and tech assurance

Group IT and IT Security Teams

Business Units Technology Teams

Internal Audit

External Auditors

Vendors and/or Service Providers

Group operational risk

Group legal and Compliance

JOB REQUIREMENT

QUALIFICATIONS / EXPERIENCE

Minimum 6-8 years of experience in IT Audit and Risk Assessment.

Degree from Information Technology or equivalent discipline

One of industry recognized certification such as CGEIT, CISSP, CISM, CISA, ISO 27001, CRISC, PCI DSS etc.

KNOWLEDGE & TECHNICAL SKILLS

Excellent stakeholder management and communication skills.

Project delivering experience

Solid understanding of current and emerging technologies.

Understanding of IT SOX and other IT/IS frameworks and best practices such as COSO, COBIT, ITIL, ISO 27001, SOC 2, 3, etc.

Good knowledge of privacy regulations and data protection.

Detailed oriented and able to work under pressure and accustomed to work under tight deadlines.

Team-oriented, collaborative, diplomatic andflexible.

Strong written and verbal communication skills, strong interpersonal skills and the ability to communicate effectively across business units.

WHAT'S ON OFFER

13th salary

Bonus paid in April next year if joining before Oct 2024

Paid leave up to 22 days per year (prorated for partially joining)

Work remote 1 day per week

Health insurance for employees and direct dependents

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

insurance, Hongkong company

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Salary:

Negotiation

Job ID:

J01573

Status:

Related Job:

Senior DevOps (Data Platform)

Ho Chi Minh - Viet Nam

Digital Bank, Product

Devops
Spark

Managing workloads on EC2 clusters using DataBricks/EMR for efficient data processing Collaborating with stakeholders to implement a Data Mesh architecture for multiple closely related enterprise entities Utilizing Infrastructure as Code (IaC) tools for defining and managing data platform user access Implementing role-based access control (RBAC) mechanisms to enforce least privilege principles Collaborating with cross-functional teams to design, implement, and optimize data pipelines and workflows Utilizing distributed engines such as Spark for efficient data processing and analysis Establishing operational best practices for data warehousing tools Managing storage technologies to meet business requirements Troubleshooting and resolving platform-related issues Staying updated on emerging technologies and industry trends Documenting processes, configurations, and changes for comprehensive system documentation.

Negotiation

View details

Senior Machine Learning Engineer

Ho Chi Minh, Ha Noi - Viet Nam

Information Technology & Services

Machine Learning

Creating the V1 Evaluation Platform: You will be responsible for designing and building the core backend systems for our new LLM Evaluation Platform, using Arize Phoenix as the basis for traces, evaluations, and experiments. Implementing Production Observability: You will need to architect and implement the observability backbone for our AI services by integrating Phoenix with OpenTelemetry to establish a centralized system for logging, tracing, and evaluating LLM behavior in production. Standardizing LLM Deployment Pipeline: You will be in charge of designing and implementing the CI/CD framework for versioning, testing, and deploying prompt-based logic and LLM configurations, ensuring reproducible and auditable deployments across all AI features. Providing Practical Solutions: Your role will involve making pragmatic technical decisions that prioritize business value and speed of delivery, in line with our early-stage startup environment. Collaborating with Other Teams: You will work closely with the Data Science team to understand their workflow and ensure that the platform you build meets their core needs for experiment tracking and validation. Establishing Core Patterns: You will also help in establishing and documenting the initial technical patterns for MLOps and model evaluation that will serve as the foundation for future development.

Negotiation

View details

Senior Bridge Software Engineer (Japanese N2)

Ho Chi Minh, Ha Noi - Viet Nam

No.1 Construction Tech company in Japan

BSE/BrSE

Project Management & Client Coordination: Acting as the primary liaison between Japanese clients and our Vietnam development teams, conducting detailed briefings with the Japan team, managing client relationships and expectations, and overseeing project performance. Development Team Support: Leading the definition of project scope, objectives, and technical feasibility, delegating project tasks to team members, managing project risks, and documenting project details. Development Environment: Involvement in backend, frontend, and mobile app technologies, CI/CD & DevOps, and monitoring & tools.

Negotiation

View details