DIAG

Job Description:

IT Risk Management:

• Develop IT risk management strategies and policies.
• Establish systems and models for IT risk management tools, including: (i) Developing and implementing systems and software for IT risk management activities; (ii) Building a management model for IT risk management tools (RCSA, KRI, LDC…).
• Organize and implement the analysis and evaluation of the effectiveness of IT risk management deployment.
• Lead and participate in identifying and assessing risks for digital transformation initiatives/digital products, focusing primarily on risks related to IT and cybersecurity.

Cybersecurity Risk Management:

• Develop cybersecurity risk management policies.
• Organize the evaluation of the effectiveness of current security tools and policies.
• Implement cybersecurity assessments in line with evolving cybersecurity risks.

Training:

• Direct and guide the training and communication activities on IT and cybersecurity risk management.
• Foster a security culture and ensure compliance with regulations.

Requirements:

Education:

• Graduated from accredited universities in Vietnam or well-known foreign universities.
• Majors: Information Technology/Mathematics/Mathematics and Informatics/Electronic Telecommunications or other related fields in IT, IT Risk Management, or equivalent.
• Language proficiency: Ability to work in English or experience in projects collaborating with foreign experts as a key contact/direct role.

Experience:

• At least 15 years of experience in IT, Cybersecurity, or IT Risk Management.
• Minimum of 5 years of management experience (Department/Unit/Team/Group).

Other Requirements:

• Strong ethical standards, credibility, honesty, and integrity.
• Preferred international certifications in IT, cybersecurity such as COBIT 5, ITIL, CISSP, CISA.
• Experience in implementing ISO 27001 - Information Security Management System, Circular 09/2020/TT-NHNN - Regulations on Information System Security in Banking Operations is an advantage.