Search by job, company or skills

Eastspring Investments

Technology Risk Management – Senior Analyst

Eastspring Investments
Malaysia, Kuala Lumpur
5-7 Years
Save
new job description bg glownew job description bg glownew job description bg svg
  • Posted 10 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Eastspring is a global asset manager with Asia at its core. We create a culture in which diversity is celebrated and inclusion assured, for our colleagues, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and in exchange, we support our people's career ambitions. We pledge to make Eastspring a place where you can Connect, Grow and Succeed.

Role Overview

This role is a supporting member of the centralised Second Line Technology Risk Oversight team, reporting to the Technology Risk Management Lead. The Senior Analyst plays a predominantly execution‑focused role, supporting the implementation, operation, and continuous enhancement of technology risk frameworks, policies, and governance processes across Eastspring. The position provides hands‑on analytical support in risk assessments, data analysis, risk reporting, and preparation of senior‑management and governance‑level materials, while contributing to ongoing oversight, monitoring, and challenge activities that strengthen the firm's technology risk posture. The role spans all 12 Eastspring business locations and covers key Technology Risk domains including Information & Cyber Security, Data Privacy, Technology Enablement, and Data Governance & AI.

PURPOSE

  • Support the execution of technology risk oversight and governance activities in line with established frameworks and requirements across TRM domains, ensuring alignment with risk appetites, policies, and regulatory obligations
  • Prepare, maintain, and analyse risk data, dashboards, and presentation materials to support reporting for governance forums, committees, and ad‑hoc management requests
  • Perform data analysis and validation to ensure the accuracy, integrity, and reliability of TRM metrics and key risk indicators
  • Coordinate and support TRM initiatives and projects, including progress tracking, documentation management, and follow‑up on agreed actions
  • Engage with stakeholders across the First and Third Lines by coordinating meetings, preparing briefing materials, and capturing key discussion points and decisions
  • Support the implementation and adoption of Prudential technology risk frameworks, policies, and processes within Eastspring, including timely communication and change enablement
  • Maintain TRM knowledge repositories and records, ensuring effective version control, completeness, and accessibility for the team

Key Accountabilities


  • Support the implementation of Prudential Technology Risk frameworks, policies, and Group‑wide requirements, and contribute to the development and maintenance of Eastspring governance documents to enable effective execution of the TRM team's remit.
  • Assist with oversight monitoring and challenge activities, including:
  • Monitoring First Line compliance with regulatory and internal policy requirements
  • Tracking, analysing, and reporting Key Risk Indicators (KRIs) aligned to Eastspring's risk appetite
  • Reviewing and challenging Risk Control Self‑Assessment (RCSA) results, controls, issues, and mitigation actions to assess whether risk ratings, treatment plans, and target dates are reasonable and effective
  • Support the development and execution of technology and cyber risk assessments, including scenario analysis and thematic reviews, through data gathering, analysis, documentation, and follow‑up of action items.
  • Track and monitor technology and cyber risk exposures, maintaining risk logs and supporting the timely escalation of material issues to relevant stakeholders and governance forums.
  • Provide advisory support to regional and local IT teams, taking into account platform‑specific and regional complexities across Eastspring business units, including advisory input on projects with technology components.
  • Prepare and support risk reporting for management and governance forums, including:
  • Eastspring IT Risk Forum
  • Executive Risk Committee
  • Eastspring Investments Group Risk Committee
  • Prudential Group Technology Risk Management Forum
  • Other ad‑hoc reporting requirements
  • Maintain accurate risk data, dashboards, and presentation materials, ensuring data quality, consistency, version control, and accessibility to support decision‑making and governance discussions.
  • Collaborate closely with the Operational Risk Management (ORM) and Enterprise Risk Management (ERM) teams to execute information and technology risk oversight activities consistently across all locations and promote a strong risk culture.
  • Support communication, rollout, and tracking of Prudential Group‑wide TRM initiatives and projects, ensuring timely updates, progress monitoring, and stakeholder alignment.

Experience / Qualifications


  • 5–7 years of relevant experience in Technology Risk Management, IT Audit, or related technology risk and control domains
  • Hands‑on exposure to risk identification, control assessment, and risk reporting across one or more of the following areas:
  • IT Infrastructure Management: Networks, platforms (e.g. Windows, Unix), middleware, and databases
  • Application Development & Change Management (SDLC): Understanding of SDLC processes and control considerations
  • Identity and Access Management (IAM): Knowledge of IAM principles and tools (e.g. SailPoint, CyberArk)
  • Cybersecurity: Working awareness of security frameworks (e.g. NIST) and foundational understanding of security operations
  • Strong analytical capability and attention to detail, with the ability to work independently and exercise sound judgement with minimal supervision
  • Excellent written and verbal communication skills in English; proficiency in Mandarin is an advantage.
  • Ability to manage multiple priorities and deliver under tight timelines in a fast‑paced, multi‑stakeholder environment
  • Proficiency in Microsoft Office tools (Excel, PowerPoint, Word) for analysis, reporting, and preparation of senior‑level materials
  • Professional certifications (preferred but not mandatory):
  • Risk Management: CRISC
  • Audit: CISA
  • IT Service Management: ITIL Foundation
  • Cybersecurity: CISSP, CISM, CompTIA Security+
  • Familiarity with data visualisation tools (e.g. Power BI) and basic coding or scripting skills (e.g. Python) would be an advantage

Eastspring is an equal opportunity employer. We provide equality of opportunity of benefits for all who apply and who perform work for our organisation irrespective of sex, race, age, ethnic origin, educational, social and cultural background, marital status, pregnancy and maternity, religion or belief, disability or part-time / fixed-term work, or any other status protected by applicable law. We encourage the same standards from our recruitment and third-party suppliers taking into account the context of grade, job and location. We also allow for reasonable adjustments to support people with individual physical or mental health requirements.

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Technology Risk Management
Employment Type:
Full time

Job ID: 146511509

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 29-04-2026 01:22:08 AM
Homejobs in MalaysiaTechnology Risk Management – Senior Analyst

Similar Jobs

Senior Applications Support Analyst

Victrix Systems And Labs
V

Gen AI Engineer

Vdart Inc

Manager of Valuations, Risk Management

Oportun
O