5 ก.พ. 2569
We are looking for an experienced Senior Technology & Operational Risk professional to lead enterprise-wide risk governance, enhance risk resilience, and ensure alignment with regulatory requirements (BOT / SEC), InnovestX’s risk Standard. This role will partner closely with senior management, technology teams, and business units to proactively identify, assess, and manage risks while strengthening the organization’s risk culture.
Lead Technology Risk Management framework including ITRCSA, risk materiality assessment, and ongoing KRI monitoring
Provide advisory on IT risk, cyber governance, IT project risk, and third-party risk
Identify emerging risks and recommend effective control strategies
Oversee control testing and maintain the Technology Risk Profile
Support regulatory assessments and group-level audits (BOT / SEC / SCBX CyberCOE) Operational Risk & BCM
Lead Operational Risk Management framework across business units
Facilitate RCSA, KRI monitoring, incident management, and operational risk analytics
Strengthen GRC implementation and centralized risk reporting
Lead Business Continuity Management and Business Impact Analysis (BIA)
Prepare and present risk reports to Senior Management and Committees
Promote strong governance and risk awareness culture across the organization
Bachelor’s or Master’s degree in IT, Computer Engineering, Cybersecurity, MIS, Business, Finance, Economics, Engineering, or related fields
Minimum 8 years of experience in Technology Risk Management, Cyber Security Governance, Operational Risk, or Enterprise Risk, preferably in banking / securities / financial services
Strong experience in Technology Risk / Cyber Governance / Operational Risk / Enterprise Risk, preferably in financial services
Knowledge of ISACA frameworks, COBIT, ISO27001, COSO, BCM & GRC
Experience working with regulators (BOT / SEC) is a plus