🛡️ Senior Manager – IT Risk Management
Company Overview (People's Leasing & Finance PLC - PLC)
PLC is described as a well-established non-bank financial service provider and a superior player in the last 29 years of Sri Lankan banking/financial service landscape. It is spreading its wings across all key sectors of financial services.
The role is an excellent opportunity to lead and shape the IT risk governance framework in a dynamic, technology-driven financial services environment.
Key Responsibilities
Monitor the implementation of the company's IT Risk Management Strategy and ensure regulatory and policy compliance.
Independently monitor the IT risk profile using Key Risk Indicators (KRIs), Risk & Control Self-Assessments (RCSAs), and other methodologies.
Report IT risk position and insights to the Board Integrated Risk Management Committee (BIRMC).
Participate in Business Continuity Planning (BCP) and Disaster Recovery (DR) exercises, providing independent assurance.
Review and enhance all IT and Information Security policies.
Monitor vendor activities and financial arrangements that relate to the IT infrastructure.
Ensure risk management controls are embedded in the Product Approval Process for new or modified technology-driven goods/assets/services.
Manage Vendor Risk, evaluating the security posture of third-party providers and ensuring compliance with contractual and regulatory requirements.
Conduct independent IT risk reviews and provide recommendations to strengthen the control environment.
Required Qualifications & Experience
Education: Bachelor's Degree in Information Technology, Computer Science, Information Security, or a related discipline.
Professional Qualifications: CISA/CISSP/CISM/CRISC/Master's degree in Information Security or in Computer Science/IT specializing in Information Security.
Experience: Significant practical experience in IT Risk Management, IT Audit, or Information Security, preferably within the financial services sector.
Skills: Strong analytical, communication, and leadership skills, with the ability to collaborate effectively across departments.
Why Join Us?
Opportunity to lead IT risk initiatives in a reputed financial institution.
Exposure to advanced financial technologies and governance practices.
Attractive remuneration package and professional growth prospects.
📩 How to Apply
Send your CV with contact details of two non-related referees to: careers@plc.lk
Subject Line: Please indicate "Senior Manager – IT Risk Management" (as the subject line of your email).
