Technology Risk Lead - BankX
āļāļĩāđSCB X PCLAbout the role
We are seeking an experienced and forward-thinking Head of Technology Risk to lead the Technology Risk Management function and establish a strong risk culture across our digital banking ecosystem. This role is responsible for identifying, assessing, monitoring, and mitigating technology-related risks, ensuring the Bank's technology environment remains secure, resilient, and compliant with regulatory requirements and industry best practices.
As a senior leadership role, you will work closely with executives, technology teams, cybersecurity functions, regulators, and business leaders to ensure effective governance over technology risk, cybersecurity risk, cloud adoption, third-party risk, data governance, and emerging technologies such as Artificial Intelligence (AI).
The successful candidate will play a critical role in supporting the Bank's growth strategy while maintaining robust risk management practices aligned with regulatory expectations and international standards.
Key responsibilities
- Lead Technology Risk Governance, policies, frameworks, and risk reporting.
- Oversee Cybersecurity Risk, Cloud Risk, Data Governance, and AI Risk Management.
- Manage IT Third-Party Risk (TPRM) across vendors and strategic partners.
- Provide independent challenge and oversight for technology initiatives and digital transformation programs.
- Support regulatory compliance with BOT requirements, ISO 27001, SOC 2, PDPA, and other relevant standards.
- Present technology risk insights, key metrics, and emerging risks to Senior Management and the Board.
What we're looking for
- 7â10+ years' experience in Technology Risk, Cybersecurity, IT Audit, IT Governance, or related fields
- Experience in Banking, Financial Services, FinTech, or regulated industries preferred
- Strong knowledge of cybersecurity, cloud technologies, data governance, and emerging technology risks
- Excellent stakeholder management, leadership, and communication skills
- Certifications such as CRISC, CISA, CISSP, CISM, or ISO 27001 Lead Auditor are highly preferred.
āļāļĢāļ°āļŠāļāļāļēāļĢāļāđāļāļĩāđāļāļģāđāļāđāļ
- āđāļĄāđāļĢāļ°āļāļļāļāļĢāļ°āļŠāļāļāļēāļĢāļāđāļāļąāđāļāļāđāļģ
āđāļāļīāļāđāļāļ·āļāļ
- āļŠāļēāļĄāļēāļĢāļāļāđāļāļĢāļāļāđāļāđ
āļŠāļēāļĒāļāļēāļ
- āļāļđāđāļāļĢāļīāļŦāļēāļĢāļāļēāļ§āļļāđāļŠ
- āļāļ§āļēāļĄāļāļĨāļāļāļ āļąāļĒ
āļāļĢāļ°āđāļ āļāļāļēāļ
- āļāļēāļāļāļĢāļ°āļāļģ
āđāļāļĩāđāļĒāļ§āļāļąāļāļāļĢāļīāļĐāļąāļ
SCBX āđāļāđāļāļĒāļēāļāđāļĄāđāļāļāļāļāļĨāļļāđāļĄāļāļļāļĢāļāļīāļāđāļāļāđāļāđāļĨāļĒāļĩāļāļēāļāļāļēāļĢāđāļāļīāļ āđāļāļĒāļĄāļĩ āļāļāļēāļāļēāļĢāđāļāļĒāļāļēāļāļīāļāļĒāđ āļāļĢāļīāļĐāļąāļ āđāļāļŠāļāļĩāļāļĩ āđāļāđāļāđāļāļāļāđ āļāļģāļāļąāļ āļāļĢāļīāļĐāļąāļ āļāļēāļĢāđāļ āđāļāļāļāđ āļāļģāļāļąāļ āļāļĢāļīāļĐāļąāļāļŦāļĨāļąāļāļāļĢāļąāļāļĒāđ āļāļīāļāđāļāđāļ§āļŠāļāđ āđāļāļāļāđ āļāļģāļāļąāļāļāļĢāļīāļĐāļąāļ āđāļāļāļĢāđāđāļāļīāļĨ āđāļ§āļāđāļāļāļĢāđāļŠ āļāļģāļāļąāļ āđāļĨāļ°āļāļĢāļīāļĐāļąāļāļāļ·āđāļāđ āļĄāļĩāļĒāļļāļāļāļĻāļēāļŠāļāļĢāđāļĄāļļāđāļāļŠāļđāđāļāļēāļĢāđāļāđāļāļāļĨāļļāđāļĄāļāļĢāļīāļĐāļąāļāđāļāļāđāļāđāļĨāļĒāļĩāļāļēāļāļāļēāļĢāđāļāļīāļāļĢāļ°āļāļąāļāļ āļđāļĄāļī ...
āļĢāđāļ§āļĄāļāļēāļāļāļąāļāđāļĢāļē: āļāļĩāđ SCB X āļāļļāļāļāļ°āđāļāđāđāļāđāļāļŠāđāļ§āļāļŦāļāļķāđāļāļāļāļāļāļāļāđāļāļĢāļāļĩāđāļāđāļēāļ§āļĨāđāļģāļŠāļđāđāļāļāļēāļāļ āļāļĢāđāļāļĄāļāļĨāļīāļāđāļāļĄāļ§āļāļāļēāļĢāļāļēāļĢāđāļāļīāļāđāļāļāļāļąāđāļāđāļāļīāļĄāļāđāļēāļāļāļ§āļąāļāļāļĢāļĢāļĄāđāļĨāļ°āđāļāļāđāļāđāļĨāļĒāļĩ āđāļĢāļēāļĄāļĩāļŠāļ āļēāļāđāļ§āļāļĨāđāļāļĄāļāļēāļĢāļāļģāļāļēāļāļāļĩāđāļāđāļēāļāļēāļĒāđāļĨāļ°āđāļāļīāļāļāļ§āđāļēāļāļŠāļģāļŦāļĢāļąāļāđāļāđāļāļĩāļĒāđāļŦāļĄāđ āđ āđāļĨāļ°āđāļŦāđāđāļāļāļēāļŠāļāļļāļāđāļāđāļāļģāļāļēāļāļĢāđāļ§āļĄāļāļąāļāļāļĩāļĄāļāļĩāđāļĄāļĩāļāļ§āļēāļĄāđāļāļĩāđāļĒāļ§āļāļēāļāļŦāļĨāļēāļāļŦāļĨāļēāļĒ āđāļĢāļēāļŠāđāļāđāļŠāļĢāļīāļĄāļ§āļąāļāļāļāļĢāļĢāļĄāļāļāļāđāļāļĢāļāļĩāđāđāļŦāđāļ ...
āļŠāļ§āļąāļŠāļāļīāļāļēāļĢ
- āļāļģāļāļēāļāļāļāļāļŠāļāļēāļāļāļĩāđ
- āđāļāļāļąāļŠāļāļąāļāđāļāļĢ
- āļāļēāļĢāļāļģāļāļēāļāđāļāļāđāļŪāļāļĢāļīāļ

