Reported successfully

Position Purpose

To oversee and strengthen Wave Money’s Technology Governance, Risk, and Compliance (GRC) function by ensuring technology and cyber security risks are effectively identified, assessed, monitored, and mitigated in alignment with the Risk Management Framework, business objectives, and industry best practices.

Key Responsibilities and Accountabilities

• Update, review, and advise on Risk Management framework, policies, standards, and guidelines for Technology and Cyber Security Risk
• Actively participate in Technology and Information Security risk identification, assessment, treatment, and reporting processes
• Analyze technology-related operational risk events and emerging risk scenarios and develop effective risk treatment and remediation plans
• Track, monitor, and validate all Technology and Cyber Security Risks in the risk register on a timely basis
• Review and assess adherence of Technology and Cyber Security Risk requirements, policies, and controls as per Risk Management Framework
• Perform comprehensive risk and control assessments covering Technology and Cyber Security processes
• Articulate technology risks clearly and propose appropriate mitigating controls to reduce residual risk
• Prepare, review, and present Technology and Cyber Security Risk reports and dashboards to relevant management forums and committees
• Coordinate with Technology, Cyber Security, Compliance, and Business teams to ensure timely implementation of mitigation actions
• Participate in Business Continuity Management (BCM), Disaster Recovery (DR), and technology resilience initiatives
• Monitor technology risk incidents, perform root cause analysis, and ensure closure of corrective actions
• Support internal and external audit engagements related to Technology and Cyber Security risks
• Actively contributes to the transformation and maturity of the Technology Risk Management function by identifying opportunities to optimize tools, processes, and practices
• Promote technology risk awareness and a strong risk culture across the organization

Key Performance and Success Indicators

• Effectiveness of Technology Risk Management and control environment
• Reduction in high and critical Technology Risk exposures
• Timely identification and mitigation of Technology and Cyber Security risks
• Quality, accuracy, and timeliness of Technology Risk reporting
• Timely closure of audit and regulatory findings
• Improved technology resilience and business continuity capability

• Experience in Technology Risk, IT Audit, Information Security, GRC, or related roles within Financial Institutions, FinTech, or Telecom sectors
• Strong knowledge in Technology Risk and Cyber Security
• Strong understanding of risk frameworks, controls, and compliance
• Ability to communicate complex technology and cyber security risks to technical and non‑technical stakeholders
• Ability to guide, influence, and drive accountability
• Relevant professional certifications are an advantage
• Good English communication (written and verbal)
• Good working knowledge of Microsoft Office and reporting tools