1. Home
  2. Sales
  3. Head of Resilience Risk and DPO - Risk and Compliance

Offers “HSBC”

Expires soon
HSBC

Head of Resilience Risk and DPO - Risk and Compliance

  • Singapore, SINGAPORE
  • Sales
Apply Now

Job description

Job description

Some careers open more doors than others.

If you’re looking for a career that will unlock new opportunities, join HSBC and experience the possibilities. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Global Risk is a thriving and expert risk management function supporting HSBC globally with all aspects of risk management. The team actively manages a varied and dynamic range of risk types, including security, fraud, information security, contingency, geopolitical, operational, credit, pension, insurance, market and reputation risks. All parts of the Global Risk team use their skills, insight and integrity to handle established threats and those they see emerging, acting to protect and enable HSBC to deliver sustainable growth. 

We are currently seeking an experienced individual to join our Risk and Compliance function in the role of Head of Resilience Risk and DPO.

Role Purpose

·  Global Enterprise Risk Management (ERM) is a sub function of Group Risk and Compliance. The ERM function owns the Risk Management Framework, which includes the Group Risk Appetite Framework and Non-Financial Risk Framework, and seeks to more clearly align these to drive one clear holistic approach to Risk Management across the organisation. The objective of Enterprise Risk Management (ERM) is to develop a holistic, portfolio view of the most significant risks to the achievement of the entity’s most important objectives. 
·  The Head of Resilience Risk and DPO will support the Head of ERM Singapore to meet these objectives, providing expert advice and stewardship covering all Resilience Risk types, including Technology and Cyber Security Risk, Data Risk, Third Party Risk, Transaction Processing, Change Execution Risk and Business Interruption and Incident Risk.
·  The role holder will also be responsible for leading the Data Privacy Officer (DPO) function. 

Principal Responsibilities

The role holder will:

·  Lead the Resilience Risk stewards and DPO specialists for Singapore
·  Be responsible for providing advice, stewardship and support across all Resilience Risk types, including Technology and Cyber Security Risk, Data Risk, Third Party Risk, Transaction Processing, Change Execution Risk and Business Interruption and Incident Risk.
·  Ensure that risk management frameworks are embedded within Singapore and provide guidance to the Businesses to achieve the same.
·  Lead oversight of change execution risk and strategy implementation.
·  Support the 2LOD ERM coverage team, as well as the 1LOD Businesses and Functions, to ensure they understand the impact of issues or events, and top and emerging risks that may require changes to remain within Risk Appetite
·  Deliver tailored and specific expertise, as well as review and challenge, across Singapore enabling 1LOD to successfully deploy and operate mitigating key controls
·  Provide technical guidance to support the development and completion of Enterprise Risk and Regulatory reporting obligations in relation to Resilience Risk and DPO responsibilities (e.g. RAS, Top and Emerging Risks, Risk Profile Reporting, RMM, Board reporting, etc where relevant)
·  Monitor the local external environment to get early sight of emerging risks and provide detailed guidance on controls required to mitigate against them
·  Build and maintain relevant cross-organisation and industry relationships
·  Lead Singapore regulator and audit engagement pertaining to Resilience Risk; ensure regulatory compliance in relation to Resilience Risk as well as timely completion of Audit actions and findings
·  Support ERM Business & Functions coverage team in the development and implementation of localised Non-Financial Risk framework activity as required (e.g. Locally Significant Risks) or to meet local regulatory expectations.
·  Support training and capability uplift for the ERM Business & Functions coverage team and to the wider HSBC Singapore community to ensure robust understanding of all Resilience Risk areas
·  Lead the in-country Resilience Risk stewards and DPO specialists for Singapore, and ensure DPO responsibilities are successfully carried out, including:
·  Informing and advising the business and its employees of their data privacy and protection compliance obligations;
·  Providing expert guidance, oversight and challenge on all aspects of data protection and privacy risk strategy and compliance focusing efforts on areas that present higher data privacy risks;
·  Monitoring compliance with data privacy provisions and with HSBC Group policies relating to the protection of personal data, including the assignment of responsibilities, staff education and awareness training, and ensuring remediation of any related audit findings;

Requirements

Experience, Skills and Qualifications

·  Strong leader with the ability to operate, connect and influence at senior levels of the organisation
·  Strong experience on overall Resilience risk management including Technology & Cyber risk, Data risk, Transaction Processing risk, Third Party risk and Business Continuity
·  Strong communication, negotiation and influencing skills with ability to interact with senior management and other key internal and external stakeholders, including the Board and regulators
·  Aptitude for analysing complex issues to identify and assess the long-term, strategic implications for the Bank and its customers, translating these into tangible goals and actions.
·  Comprehensive knowledge of the external environment, particularly the regulatory landscape as well as risk, geopolitical, competitor, etc
·  Prior experience and relevant professional qualifications in technology and cyber security risk, and / or data risk will be advantageous
·  Professional qualifications (e.g. HKMA Enhanced Competency Framework on Cybersecurity, Information Systems Audit and Control Association certification or equivalent qualification from a recognised professional body) may be advantageous
·  A BA or BS University Degree in a relevant discipline preferable

You’ll achieve more when you join HSBC.
http://www.hsbc.com/careers

HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Issued by The Hongkong and Shanghai Banking Corporation Limited.

Make every future a success.
  • Job directory
  • Business directory
    •