VP-IT Risk Management

Land and Houses Bank Public Company Limited

Land and Houses Bank Public Company Limited (Sathon)

Bangkok, Thailand

Land and Houses Bank PLC firstly operated as retail banking since December 2005 and was granted to fully operated as commercial bank from BOT on December 2011. For over 14 years, from the country’s largest asset-based and most secured property developer with the highest market share…we are now becoming the integrated financial institution for new generations. As per our slogan “We are FAMILY”, we believe, working in family environment will effectively and proactively support and provide opportunities for everyone to create new business initiatives. So new working environments and fun jobs are awaiting to all candidates. Please join us and become one of our “FAMILY”.

About this position

The VP-IT Risk Management is responsible for overseeing IT Risk and Data Risk Management, developing policies and procedures, and ensuring alignment with business units to mitigate risks effectively.

Responsibilities

• Oversee IT Risk and Data Risk Management by planning, supervising, and supporting activities to achieve unit objectives.
• Develop and implement IT Risk Management policies, procedures, guidelines, and tools to address IT risks, including data risk, cyber risk, IT third-party, and IT Project.
• Established track record of IT risk related incident investigation, including those involving fraud or non-compliance, and ensure appropriate mitigation.
• Collaborate with business units to align IT risk management, identify and evaluate IT and data risks and recommend control processes.
• Review, support, and provide recommendation on IT RCA (Risk and Control Assessment), ISO 27001, CRAF (Cyber Resilience Assessment Framework), and RLA (Risk Level Assessment) processes.
• Develop and execute supervisory stress testing for IT risks, ensuring alignment with regulatory requirements and assessing the organization’s ability to withstand adverse scenarios.
• Support Business Continuity Management (BCM) activities, including disaster recovery planning, testing, and alignment with organizational resilience strategies.
• Prepare and present IT risk management reports to management and external regulators as requested.
• Promote awareness and training in IT and data risk management across the organization.
• Stay updated on emerging IT risk management trends, tools, and technologies to strengthen organizational risk practices.
• Perform other duties or special projects assigned by the supervisor.

Requirements

• Master’s/Bachelor’s degree in related or equivalent domains, preferably in IT, Cybersecurity, Computer Science.
• 10+ years of experience in IT and Data Risk Management, with at least 3 years in a managerial role.
• Strong knowledge and experience in IT Risk Management, Data Risk, IT governance, IT 3rd Party, IT Project, ISO standard, Cybersecurity and related fields.
• Experience in developing and conducting supervisory stress testing and BCM activities.
• Experience in banking, financial services, or consulting firms is required.
• Familiarity and good knowledge with regulations (e.g., BOT IT Risk Management, BOT CRAF, PDPA, etc).
• Certifications such as CRISC, CISM, CISA, or CISSP are preferred.
• High awareness of emerging data protection tools, methodologies, and technology trends.
• Strong leadership, analytical, and communication skills.
• Proficiency in English and ability to handle multiple tasks effectively.