Head, GR

DescriptionKey ResponsibilitiesBusiness Continuity ManagementLead the Group Business Continuity Management Team on the implementation and embedding of a robust Group Business Continuity Management Framework across the Group and ensuring compliance to Regulatory requirements where applicable. As a second line of defense, provide governance, oversight and advisory on the Group Business Continuity Management Framework to all BUs and BEs.Effective coordination and management of country wide BCM activities as well as effective oversight on Regional BCM activities via the Group BCM Steering Committee.Secretariat of the Malaysia BCM Steering Committee, Group BCM Steering Committee and Crisis Management Committee (when activated).Provide management with an independent view on the effectiveness of the business continuity and disaster recovery capabilities. Timely reporting and awareness on Business Continuity Risk to Risk/ Management Committee. To promote a culture of Business Continuity Preparedness through awareness session, engagement session, focus group or training to BUs and BEs.Work closely and provide support to Central Department Continuity Coordinators (CDCCs) and Department Continuity Coordinators (DCCs) on matters relating to the BCM Framework, to ensure preparedness for major disruption.In the event of crisis activation, to support the Crisis Management Committee to oversee and coordinate recovery and resumption.Third Party Risk ManagementLead both the Group Business Continuity Management Team and Regional Third Party Risk Management unit to drive the implementation and embedding a robust Frameworks across the Group and ensuring compliance to regulatory requirements where applicable. As the 2nd line of defence, provide governance, oversight and advisory on Third Party Risk Management related matters in providing consultation to all BUs/BEs in performing third party risk assessments to identify potential failure points, threats, and vulnerabilities and implement appropriate mitigation controls to minimise the impact to the organisation throughout the engagements with third party with support from other key stakeholders (i.e. Technology Risk Management, Business Continuity Management, Technology, Data Governance, Legal & Compliance, Admin & Property Management, Procurement and Finance).  Timely reporting of third party risks to relevant risk committees as per framework requirement.To promote a culture in managing third party risk through awareness sessions, engagement sessions, focus group sessions or trainings to BUs/BEs. Work closely with Service Recipients (SRs) / Service Owners (SOs) of BUs/BEs Risk Control Units (RCUs) / Risk Control Specialists (RCSs) / Designated Compliance & Operational Risk Officers (DCOROs) to ensure third party risks/incidents/events are promptly identified, escalated and addressed as per Operational Risk Management framework.Job SpecificationBachelor's Degree or Professional Qualification in relevant discipline (Information Systems / Business / Banking / Finance / Accounting / Economics / IT / Human Resources)Certified Business Continuity Professional (CBCP) preferred ORMember of Business Continuity Institute OR any certification from other international BCM certification bodies.> 10 years of experience in 1st line or 2nd line of the banking industry or Business Continuity /Incident Management experience in Banking OR within large organization. of compliance, procurement, third party risk, operational risk, governance, preferably in established bank / financial institutions> 5 years experience dealing with regulator bodies such as BNM