Key Duties & Responsibilities:
Risk Control
Develop, implement, and maintain risk management frameworks, policies, and procedures in line with regulatory standards and organizational objectives.
Identify, assess, and monitor operational, technology, and change-related risks across systems and projects.
Coordinate regular risk assessments and report key risk indicators (KRIs) to senior management and relevant committees.
Recommend and oversee the implementation of risk mitigation strategies.
Ensure compliance with internal policies, regulatory requirements, and international standards (e.g., ISO 27001, COBIT, ITIL).
Release Management
Oversee the planning, scheduling, and execution of software releases, patches, and updates across production and test environments.
Establish and enforce release governance and approval processes to minimize disruption to business operations.
Coordinate cross-functional teams (IT operations, development, cybersecurity, and business units) during release cycles.
Ensure robust testing, rollback, and contingency plans are in place prior to releases.
Maintain release documentation, audit trails, and ensure knowledge transfer for post-release support.
Governance & Reporting
Provide regular reports to senior management on risk posture, release performance, and compliance status.
Engage stakeholders to ensure alignment of IT risk and release management activities with business strategy.
Drive continuous improvement initiatives to enhance risk control and release processes.
Other Requirements
Qualifications & Experience:
Bachelor's degree in Computer Science, Information Technology, Risk Management, or related field.
Professional certifications such as ITIL, COBIT, ISO 27001, CRISC, CISM, or PMP will be an added advantage.
At least 8 years of progressive experience in IT risk management, release/change management, or IT governance roles.
Strong knowledge of IT service management (ITSM), enterprise risk frameworks, and regulatory requirements in the financial/banking sector