Senior Professional, Information Technology (Governance Risk and Compliance)
Chine

Senior Professional, Information Technology (Governance Risk and Compliance)

Artia13 1 Views

Opportunité d’Emploi à la New Development Bank

Senior Professional en Technologies de l’Information (Gouvernance, Risque et Conformité)

Entreprise : New Development Bank

Lieu : Shanghai, Chine

Date limite de candidature : 2 juillet à 23h59 (heure standard de Chine)

Description du Poste

Le poste de Senior Professional en Technologies de l’Information (Gouvernance, Risque et Conformité) est une occasion unique de contribuer à la stratégie et à la vision de la New Development Bank (NDB). La division des Technologies de l’Information, responsable de la définition des stratégies, politiques et processus IT de la Banque, recherche un expert capable de renforcer ses normes de gouvernance et de conformité. Ce rôle crucial implique une responsabilité significative envers les parties prenantes internes et externes, et nécessite une expérience avérée dans la gestion des risques TI.

Responsabilités

Le titulaire du poste aura pour mission :

  • De maintenir un cadre de gestion des risques IT, en effectuant des évaluations pour identifier les problèmes pertinents et leurs mesures d’atténuation.
  • De superviser et d’implémenter des politiques IT afin d’assurer la conformité avec les réglementations pertinentes et les meilleures pratiques sectorielles.
  • De servir d’expert en matière de cadres de gouvernance, de gestion des risques, et de conformité, tels que COBIT, ISO, NIST, et GDPR.

Compétences et Qualifications

Pour postuler à ce poste, les candidats doivent démontrer :

  • Un minimum de 7 ans d’expérience pertinente dans les domaines de la sécurité de l’information, de la gestion des risques IT, et des cadres de conformité, idéalement au sein d’une institution financière internationale ou d’une entreprise multinationale.
  • Un diplôme de master ou équivalent dans un domaine pertinent, avec une préférence pour la cyber-sécurité, l’audit de sécurité, et la gestion des risques IT.
  • Des certifications en sécurité et en gestion des risques, telles que CISSP, CISM, ou CISA sont appréciées.

Compétences Communicationnelles

Les candidats doivent posséder des capacités exceptionnelles en communication écrite et verbale en anglais, avec une aptitude pour travailler sous pression et respecter des délais serrés. Une expérience préalable dans un environnement de travail multiculturel est également nécessaire.

Environnement de Travail et Objectifs

Le poste est basé à Shanghai et offre une plateforme pour collaborer avec des parties prenantes internes, générer des rapports pour la direction, et participer à des projets innovants axés sur la transformation digitale de la Banque. Le titulaire contribuera ainsi à renforcer l’image de la NDB en tant qu’institution financière internationale innovante.

Pour postuler : Si vous êtes intéressé, vous pouvez soumettre votre candidature via le lien suivant : Postulez dès maintenant !

Cette offre d’emploi illustre l’engagement de la NDB envers la diversité et l’inclusion, offrant à tous les candidats une chance équitable de contribuer à ses ambitions. Nous encourageons les candidatures de toutes les personnes qualifiées, indépendamment de leur origine, sexe ou statut.}

📅 Date de publication de l’offre : Fri, 13 Jun 2025 00:57:50 GMT

🏢 Entreprise : New Development Bank

📍 Lieu : 上海市

💼 Intitulé du poste : Senior Professional, Information Technology (Governance Risk and Compliance)

💶 Rémunération proposée :

📝 Description du poste : Closing on: July 02 at 11:59 pm (China Standard Time)Duty Station: Shanghai, ChinaTarget Market: Global recruitmentJob description: Senior Professional, Information Technology (Governance, Risk and Compliance)The Information Technology Division, under the Office of the Vice President for Administration, is functionally responsible for developing the Bank’s IT strategy, policies and guidelines and operating IT process and systems. The division leads in the setting up, analysis and review of IT systems, services and solutions in domains of specialization (i.e., Business Applications, Technology Infrastructure, Workspace and Facility, Application Development, Data and Analytics, Information Security, IT Supply and Demand) ensuring that the Bank’s IT systems and services are built and aligned with “best in class” industry norms. These systems and services are critical to accelerating and expanding the Bank’s operations, strengthening its reputation as an innovative International Financial Institution (IFI).The Senior Professional, GRC (Governance, Risk and Compliance) position will be responsible to ensure the coherence with internal policies and guidelines, applicable regulations, and industry best practices. The IT GRC senior professional will lead and manage IT GRC projects and initiatives, identify and mitigate IT risks, and develop and implement IT policies, guidelines and procedures, and coordinate the solution to resolve audit issues and risk findings. The staff works as the focal point to various internal stakeholders, including Internal Audit and Risk Management. The staff shall also have oversight of Information Security risk including IT system disaster recovery.Duties and Responsibilities:

  • Maintain IT risk management framework as first line of defense, conduct IT risk assessments and identify relevant issues and mitigation measures.
  • Oversee, implement and maintain IT polices and controls to ensure conformance with applicable regulations and industry practices.
  • Serve as a subject matter expert on IT governance, risk management, and compliance frameworks such as COBIT, ISO, NIST, and GDPR, etc.
  • Develop and deliver IT GRC training and awareness programs to educate stakeholders on IT risk and compliance requirements.
  • Monitor and analyze industry trends and regulatory developments related to IT governance, risk management, and compliance, and recommend appropriate actions.
  • Lead and manage IT GRC projects and initiatives, including project planning, resource allocation, and progress tracking.
  • Prepare and present IT GRC reports and metrics to Senior Management and other related stakeholders.
  • Collaborate with internal and external auditors and the internal control and risk mangement unit to facilitate audits and control testing and ensure compliance with relevant requirements and recommendations.
  • Collaborate with stakeholders to understand their needs, negotiate requirements, and present solutions.
  • Identify areas for improvement, analyze business objectives, and develop technology interventions based on rigorous research and prioritization.
  • Design, propose, source, and implement cost-effective, cloud-based solutions aligned with business needs, applying sound business acumen and technology assessments.
  • Coordinate internal resources, lead domain-specific solution design, and ensure high-quality, integrated implementation of technology solutions that align with the organization’s business, technology, and control environment.
  • Identify and assemble structured and unstructured datasets from various sources to meet business requirements.
  • Conduct training, workshops, and presentations for business units.
  • Perform other assigned duties and responsibilities.

Target Skill ProfileSubstantive Knowledge

  • Demonstrated capacity gained through education and experience in this field reflecting conceptual understanding in an operational setting.
  • Understand the program framework and the integration of different programmatic elements into the project/service portfolio.
  • Develop and execute program plans across a range of well-defined and established programmatic elements aligned with broader organizational objectives.

Communication Skills

  • Demonstrated Skill gained through exposure/experience in relationship management.
  • Excellent written and verbal communication skills in English.
  • Ability to work well under pressure and meet deadlines, demonstrating high motivation, integrity, and responsibility.
  • Strong analytical and critical thinking skills with a meticulous attitude.
  • Ability of multi-tasking and managing projects in parallel.
  • Exceptional strategic thinking, leading change, problem solving, communication, conflict management and resolution and interpersonal skills with high resilience and drive in achieving objectives and goals.
  • Relevant experience in a multi-cultural work environment fostering a climate of teamwork and collaboration.
  • Advise team on possible impediments to sustaining delivery standards to develop strategies.
  • Engage clients proactively to define expectations/needs and build an informed framework for service delivery.

Execution Skills

  • Demonstrated Achievement in the consistent delivery of programs/services through adaptation.
  • Meet consistently the program delivery standards on timing and the deployment of resources.
  • Meet consistently program delivery standards in terms of quality/relevance.

Requirements

  • A minimum of 7 years relevant experience in Information Security, IT risk management, governance, and compliance frameworks, preferably in a multilateral development bank or regulated private/public sector financial institution, global financial services organization, or large corporate enterprise.
  • Master’s degree or equivalent in a relevant professional field from a reputed university. A degree in computer science, cyber security, IT general control and security audit, IT risk management, compliance management, data privacy or related domain is preferable.
  • Ability to objectively critique business processes, scenarios and controls.
  • Possession of security and risk certifications, such as CISSP, CISM, CISA, CRISC, etc. is preferred.
  • Knowledge and experience in security, risk, and compliance frameworks such as COBIT, NIST, ISO, SOX, etc.
  • Good understanding and practical experience working with privacy and legal requirements, such as GDPR, PIPL, data security, sanction, embargo, etc.
  • Solid skills in evaluating IT risks and controls and developing IT governance policies and processes to support organization development and implement management solutions.
  • Good knowledge in information security, architecture and performance, system resilience, access control, privileged account management, monitoring, and log management.
  • Proven experience with ITIL, project management (PMP), architecture, information security, and governance processes.
  • Excellent communication and presentation skills. Ability to work collaboratively and effectively with IT, business units and other organizations.
  • Effective in building partnerships with organizational leaders and reporting to senior management.

For candidates based in Russia, if you face any technical difficulties, please email your resume and cover letter to with the Job Title and Requsition Number in the email subject line.

➡️ Candidater en ligne

🔎 Offre d’emploi vérifiée et enrichie selon la ligne éditoriale de l’Association Artia13 : éthique, inclusion, transparence et vigilance contre les annonces trompeuses.

🌍 Retrouvez d’autres offres sur artia13.world

Artia13

Depuis 1998, je poursuis une introspection constante qui m’a conduit à analyser les mécanismes de l’information, de la manipulation et du pouvoir symbolique. Mon engagement est clair : défendre la vérité, outiller les citoyens, et sécuriser les espaces numériques. Spécialiste en analyse des médias, en enquêtes sensibles et en cybersécurité, je mets mes compétences au service de projets éducatifs et sociaux, via l’association Artia13. On me décrit comme quelqu’un de méthodique, engagé, intuitif et lucide. Je crois profondément qu’une société informée est une société plus libre.

Artia13 has 3714 posts and counting. See all posts by Artia13

Vous Aimerez Peut-être Aussi

Assistant Vice President – Business Consulting – HBCN CMB ANALYTICS SUPPORT

Assistant Vice President – Business Consulting – HBCN CMB ANALYTICS SUPPORT

Artia13
Lifestyle Server 餐厅服务员

Lifestyle Server 餐厅服务员

Artia13
Artificial Intelligence Intern

Artificial Intelligence Intern

Artia13