Chief Technology Risk Officer (CTRO)

As CTRO, you will define and execute the organization’s technology risk and operational resilience strategy, ensuring robust governance, compliance, and risk oversight. You will lead enterprise-wide initiatives to identify, mitigate, and monitor technology and operational risks while shaping the future of the company’s digital and technology operations.Key Responsibilities:Lead the development and continuous improvement of the Technology and Operations Risk Management Framework, aligned with regulatory standards (e.g., BNM RMiT, MAS TRM) and global best practices.Provide executive oversight of risk governance, incident management, and control assurance processes.Partner with senior leadership, regulators, and audit teams to ensure enterprise-wide compliance and robust risk mitigation.Drive proactive identification, assessment, and remediation of emerging technology and operational risks.Oversee risk control self-assessments (RCSA), Key Risk Indicators (KRIs), and operational risk reporting to the Board and Management Risk Committee.Lead, mentor, and develop a high-performing team of risk professionals, fostering a strong risk-aware culture.Direct cyber resilience, third-party risk management, and technology continuity initiatives across the region.Act as the senior escalation point for technology and operational risk issues, ensuring timely resolution and strategic mitigation.Requirements:Bachelor’s or Master’s degree in Information Technology, Computer Science, Risk Management, or related fields.12–15+ years of experience in technology and operational risk management, preferably within financial services or a regulated environment.Strong understanding of BNM RMiT, MAS TRM, NIST, and ISO27001 frameworks.Proven ability to influence and advise senior executives and boards on technology risk and operational resilience matters.Experience leading high-performing teams and managing enterprise-wide risk programs.Professional certifications such as CISA, CRISC, CISSP, or CISM are advantageous.EA Licence No: 11C5502 | EAP Registration No: R1106192