Risk Management Lead

The NETS Group is a leading payments services group, enabling digital payments for merchants, consumers and banks across the entire payments value chain. 
 

The Group operates Singapore’s national debit scheme enabling customers of DBS Bank/POSB, HSBC, Maybank, OCBC Bank, Standard Chartered Bank and UOB to make payments using their ATM cards or mobile devices at more than 130,000 acceptance points in the country as well as online payments.

Position Summary

This role leads our Risk Management department as part of the second line-of-defense, with a strong focus on technology risk governance and is responsible for defining formulating risk policies, processes, and procedures.

This role collaborates closely with the first and third lines-of-defense and act as a strategic advisor and domain expert to business stakeholders, providing guidance on a wide range of risk matters including technology risk governance. This role leads and oversees the strengthening of risk governance structure and risk culture.

Key Responsibilities

• Lead and oversee the organization’s technology risk governance framework, ensuring alignment with regulatory requirements and industry best practices
• Act as a subject matter expert on IT risk, advising stakeholders on risks related to infrastructure, cybersecurity, data privacy, and digital platforms
• Collaborate with line functions to identify, assess, and mitigate risks across networking, databases, and enterprise platforms
• Provide strategic leadership and advisory on risk matters to the Audit and Risk Management Committee and the executive committee
• Define the risk roadmap, leading the adoption and development of new technologies, processes and continuous improvement of existing risk practices
• Support and partner the business in driving a balanced approach between business growth and risk management, ensuring that risk management priorities are aligned with business plans
• Act as the key liaison with relevant regulatory authorities on risk matters
• Oversee the daily operations of the risk team and advise on risk and matters
• Lead early identification of risks across the organization, including initiatives, for forward-looking risk management
• Work with the first line-of-defense to identify, assess, document and regularly review risks of all risk types and coach the business to design and implement controls
• Assist with developing and implementing risk policies, risk procedures, key risk indicators and risk appetite statement
• Monitor risks against limits and thresholds, produce respective reports to management and other relevant stakeholders
• Implement and oversee the risk incident management process including registration of risk events, managing and delivering risk incident reports for senior management and regulators
• Lead and coordinate regular BIA reviews with key stakeholders to develop effective BCP recovery and response plans
• Coordinate and conduct BCP exercises to validate the recovery strategies of business units on a regular basis
• Develop and conduct risk training to staff with risk management responsibilities and general staff to raise risk awareness
• Liaison with internal & external auditors and regulators where required; and
• Manage and grow an optimized, engaged and high-performing team of risk professionals

Requirements

Experience, Skills and Knowledge

• At least 15 years of experience in risk, consulting and/or auditing, or in operational risk management, business continuity, technology risk management (including cyber)
• Strong knowledge of risk management and control concepts
• Demonstrate a high level of strategic and tactical business acumen and industry knowledge to facilitate solution development
• Strong knowledge of key regulations, best practices and frameworks related to the financial industry
• An excellent team player with strong interpersonal and communication skills to deal with a broad range of stakeholders
• Proven leadership abilities to build, coach, and develop a team in a dynamic and fast-paced environment, to implement a strategic vision, set compelling goals and translate them into actionable plans to meet annual goals and objectives
• Excellent problem-solving skills and ability to prioritize and manage multiple tasks
• Excellent communication (both spoken and written), presentation and business writing skills
• Possesses a strong control and process management mindset, constantly paying attention to details and have ability to perform deep-dive investigation and crunching for control and process issues

Professional Certification

• Possess a recognized professional qualification in the field of risk and controls or other certification such as in IT, e.g. CISSP, CISA

Network for Electronic Transfers (Singapore) Pte Ltd.