IT Risk Management Unit Manager

Job Summary:The IT Risk Management Unit Manager is responsible for identifying, assessing, mitigating, and monitoring IT-related risks within the organization. This role ensures that the bank's IT systems, infrastructure, and operations comply with risk management frameworks, regulatory requirements, and cybersecurity best practices to safeguard the organization from potential threats. Job Responsibilities:Develop and enforce IT asset management policies and procedures. Conduct risk assessments to identify cybersecurity threats, operational vulnerabilities, and compliance gaps.Evaluate IT systems, applications, and processes to determine risk exposure and impact.Develop and maintain an IT risk register, tracking identified risks and their mitigation measures.Develop and implement IT risk management strategies and frameworks to minimize operational risks.Recommend security controls, technology enhancements, and process improvements to reduce IT risk exposure.Ensure disaster recovery (DR) and business continuity (BCP) plans are in place and tested regularly.Ensure IT risk management practices align with regulatory standards (e.g., GDPR, PCI DSS, ISO 27001, NIST, COBIT).Collaborate with internal and external auditors to address compliance requirements and risk assessments.Stay updated on IT risk regulatory changes and ensure necessary adjustments to risk management policies.Develop and oversee the IT incident response plan, ensuring swift and effective resolution of IT security incidents.Work with IT security teams to analyze and report security breaches, cyber threats, and system failures.Conduct post-incident evaluations to identify root causes and implement preventive measures.Work closely with senior IT leaders, cybersecurity teams, compliance officers, and risk managers to integrate IT risk management into business operations.Provide risk advisory and training to IT and business teams to enhance risk awareness.Act as the primary liaison for regulatory bodies, auditors, and external service providers regarding IT risk-related matters.Prepare and present IT risk reports, risk dashboards, and compliance updates to senior management and regulatory authorities.Maintain comprehensive documentation of risk management policies, procedures, and assessments.Conduct periodic risk reviews and IT audits to ensure alignment with best practices. Job Qualifications: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field.Minimum 8+ years of experience in IT risk management, cybersecurity, or IT governance.Strong background in IT compliance, security frameworks, and enterprise risk management.Experience in managing IT risk programs, conducting IT risk assessments, and collaborating with auditors.