Senior Manager, Business Technology & Cyber Risk \xe2\x80\x93 Dubai
Lead the delivery of business technology & cyber risk supervision framework & ongoing cyber risk
Conduct Cyber Risk Supervision of applicant and Authorized Firms, across a range of authorized financial institutions, and support outreach and internal efforts.
Role
Develop supervisory guidelines for IT and cyber risk supervision
Gather, organize and analyze industry sector and firm specific data for the purpose of monitoring and assessing the IT and cyber risks of Authorized Firms
Take the lead role in conducting IT and cyber risk thematic reviews
Conduct desk-based reviews and onsite cyber risk examinations of Authorized Firms and write clear and concise memorandums and reports.
Conduct professional discussions with management of firms to gather and corroborate information
This includes professional discussions with the management of Authorized Firms and the assessment of information security and cyber risk management frameworks and policies procedures
Monitor compliance with local UAE Laws, Rules and Regulatory Policy.
Identify and inform line management of emerging IT and cyber risk trends that may materially impact regulated entities; and recommend appropriate actions.
Technical Guidance
Act as a Supervision IT and cyber risk resource and support the development and delivery of trainings and presentations to key stakeholders.
Operating within the first line of defense, you will share responsibility for ongoing risk management
while promoting a strong risk culture within the division and across the organization in line with the Risk Management Framework
Strategy Formulation, Implementation, Planning and Projects
Implement and Supervision Department-wide strategy, business plans and policies
Contribute to the development & implementation of an authorization and/or supervision strategy
Working knowledge in any of the following areas would be highly valued: distributed ledger other emerging technologies and financial crime supervision.
Experience / Qualifications
professional certifications: CISA, CISSP, CISM, ISO27001 Lead Auditor)
6 years of experience at a broadly equivalent financial services regulator or a combination of experience with a financial services regulator and a financial sector institution.
Experience engaging in the supervision of financial institutions is preferred.
Direct experience conducting IT and cyber risk reviews, testing of IT and cyber risk controls, and developing or evaluating IT and cyber risk policies and procedures.
In-depth knowledge of virtual assets and virtual asset service providers is beneficial.