| JOB NAME |
Specialist - Risk, Audit & ICFR, Resilience Governance [Beijing]
POSTED BY: Asian Infrastructure Investment Bank (AIIB)
REF:AIIB 235
Date Published:Thursday, January 20, 2022
Date of Expiration:Tuesday, July 19, 2022 EXPIRED
RECOMMEND THIS JOB ON FACEBOOK
|
|
|
| LOCATION OF THIS JOB |
 China | BEIJING in China |
| INDUSTRY |
| DEVELOPMENT FINANCE INSTITUTIONS
|
| JOB TYPE |
| Full-Time |
| MAIN JOB DESCRIPTION |
1. Ref. Number 22041
2. Position Specialist - Risk, Audit & ICFR, Resilience Governance [Beijing]
3. Minimum 5-8 years of experience
4. Department/Division Information Technology Department
5. Job Type Global Recruitment
6. Location Beijing
7. Posting Date Jan 13, 2022
8. Closing Date Feb 20, 2022
ABOUT
The Asian Infrastructure Investment Bank (AIIB) is a multilateral development bank whose mission is financing the Infrastructure for Tomorrow—infrastructure with sustainability at its core. We began operations in Beijing in January 2016 and have since grown to 105 approved members worldwide. We are capitalized up to USD100 billion and Triple-A-rated by the major international credit rating agencies. Working with partners, AIIB meets clients’ needs by unlocking new capital and investing in infrastructure that is green, technology-enabled and promotes regional connectivity.
PURPOSE OF THE JOB
1. The Information Technology Department (ITD) is looking for a specialist who will be responsible for driving risk analysis for IT projects and external third-party risk assessments by designing controls and implementing industry best practice processes.
2. They will also assist in the governance of ITD's overall Resilience (Response and Recovery) capabilities for the Bank’s digital landscape. In addition, they will support internal and external IT audits, and the Internal Control over Financial Reporting (ICFR) program of the Bank.
3. The Specialist will work in a start-up, fast-paced, rapidly changing work environment.
4. They will have the opportunity to drive IT process design and will be exposed to cutting-edge cloud technology and a multilateral development bank’s business environment where they can hone skills in project management, communication, stakeholder management, planning, and risk management.
RESPONSIBILITIES:
1. Provide domain expertise in the areas of IT risk and compliance, third party risk assessment, and COSO IT controls.
2. Advise business and technology users on (a) relevant IT risk standards and guidelines, (b) principles of security and controls, and (c) the adoption of secure and resilient solutions.
3. Coordinate and conduct the IT risk and compliance-related review of IT projects and vendors during the procurement and implementation phases.
4. Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness.
5. Design the IT Resilience Framework and appropriate resilience and continuity plans for major system failures against threats and vulnerabilities.
6. Conduct ongoing assessment and governance of resilience and recovery capabilities.
7. Work with various teams (e.g., infrastructure, network, digital services) to develop and carry out ongoing resilience tests and exercise programs.
8. Serve as the focal point and coordinator to support internal and external IT audits, ICFR control testing, etc.
9. Manage vendors, which includes procurement, contracting, performance management, etc.
|
| REQUIREMENTS FOR THIS JOB |
1. Master’s degree in IT, business management, economics or relevant field of specialization.
2. One of the following certifications required; additional relevant certifications would be an advantage:
3. Business Continuity related certification, such as CBCP, MBCP, MBCI or FBCI
4. CISA: Certified Information Systems Auditor
5. CISM: Certified Information Security Manager
6. CISSP: Certified Information Systems Security Professional
7. ITIL foundation or COBIT certification
8. Minimum 5-8 years of experience in financial services, information technology, corporate continuity environments, or equivalent.
9. Experience building and developing successful technology risk management programs.
10. Experience with vendor management and conducting third-party risk assessments.
11. Experience creating and maintaining policy, standard, guideline and procedure documents
12. Extensive knowledge and experience in security, risk and compliance frameworks such as COSO, NIST, ISO, SOX, etc.
13. Capability to build and mature a disaster recovery program and organizational framework based on industry recognized best practices.
14. Familiar with designing or performing all aspects of the disaster recovery and business continuity lifecycle (program design BIA, risk assessment, recovery strategy development, plan documentation, exercise facilitation, training and awareness).
15. Good knowledge of infrastructure (Platform, Database, Data Center, Storage, IaaS, and PaaS) and network.
16. Results oriented with an ability to multitask and prioritize duties.
17. Effective communication and engagement skills with internal and external stakeholders at all levels
18. Fluency in oral and written English is required.
AIIB is committed to diversity, transparency, and inclusion. We believe our strength comes from having a team with the right diverse skills, experiences, and abilities selected through a merit-based competitive process. We actively encourage applications from people from both within and outside AIIB members, regardless of nationality, religion, gender, race, disability, or sexual orientation.
Join in AIIB’s mission to promote sustainable infrastructure investments and to improve social and economic outcomes in Asia and beyond.
Previous experience and qualifications will determine the grade and job title at which successful applicants will enter AIIB.
|
|
English 
FRENCH
