Dept Head IT Operational Risk Management

Permata Bank (Tangerang, Banten, Indonesia)

Banten, Indonesia

We are one of the top 10 biggest banks in terms of assets in Indonesia and listed in the Indonesia Stock Exchange, that offer banking products and services that help people and companies to succeed, creating wealth and growth through our Retail Banking, SME and Wholesale businesses. In 2004, Standard Chartered Bank and PT Astra International Tbk took over PermataBank and began a massive transformation process within the organization. Furthermore, as a form of its commitment to PermataBank, the combined ownership of these major shareholders increased to 89.01% in 2006. After a long but smooth process, PermataBank made a new history in May 2020 through an acquisition transaction conducted by Bangkok Bank Public Company Limited ("Bangkok Bank"). Bangkok Bank officially became the controlling shareholder of PermataBank after taking over 89.12% of PermataBank's shares from the total number of shares that have been issued and paid up by Standard Chartered Bank and Astra International. Followed by the Mandatory Tender Offer process in 2020, as of 2021 and 2022 Bangkok Bank owned 98.71% We offer complete suite of banking products and services including current and savings accounts, time deposits, mutual funds, bonds, personal loans, credit card and mortgage for Retail customers, available in Conventional and Sharia. We also offer working capital loans, dealer finance, join finance, transaction banking, trade finance, foreign exchange, as well as securities and agencies services for our SME and Wholesale business. PT Bank Permata Tbk obtained the license as the commercial bank under The Decree of Minister of Finance Number 1937/U.M.II dated 19 February 1957.

About this position

Responsibilities

• As First Line of Defense, proactively support for Operational Risk Management in the relevant IT Area (Infrastructure, Development/Application, Data Management, User Access) in accordance with Risk Management Framework.
• Lead implementation Operational Risk Management Framework in Technology Directorate, also develop strategies to mitigate and manage technology & operational risk and ensure that appropriate controls are in place according to ORM Framework such as Process Mapping, RCSA & KRI.
• Lead periodic IT Thematic Review or Independent Review to identify and mitigate risk associated with Information Technology.
• Involve in Taskforce / Bank wide Project related to IT / Information Security / Data Privacy.
• Develop and review IT Risk Profile & IT Risk Management Implementation Quality.
• Managed project documentation.
• Prepared the documentation for project licensing.
• Periodically monitor and updating internal policies based on the regulation.
• Reviewing standard operational procedure.
• Reviewing agreement with third party.
• Evaluates internal policies between process and regulation.
• Monitors and consistently reduced incompatibility between the process and internal policies.
• Advises management regarding cost & project planning and project licensing.

Requirements

• Minimum S1/S2 in Computer Science, or certified in IT (CISA, CRISC, CISSP, CISM, etc) is a plus.
• In depth knowledge or have minimum 6 years experience in the field of IT Audit/ IT Risk Management/IT Governance Risk & Control.
• Knowledge of COBIT, NIST, ITIL/ITSM, ISO27001, Information Security, Cyber Security, Incident Response, Data Privacy, Project & SDLC.
• Familiarity with Regulatory requirements related to Information Technology / Information Security / Cyber Security / Data Privacy.
• Excellent verbal and written communication skills, fluent in English.