Prudentials purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our peoples career ambitions. We pledge to make Prudential a place where you can Connect, Grow, and Succeed.
Principal Duties & Responsibilities:
Formulating appropriate policies for the effective implementation of Technology Risk Management Framework (TRMF) and Cyber Risk Framework (CRF).
Enforcing compliance with these policies, frameworks and other technology-related regulatory requirements.
Advising senior management on technology risk and security matters, including developments in the financial institutions technology security risk profile in relation to its business and operations.
Provide assurance and oversight on information and technology risks that might pose a threat to the business.
Provide PAMB management with objective analysis, detailed observations and recommendations relating to key information and technology risk areas to mitigate the spectrum of risks relating to the achievement of the PAMBs business operations.
Provide oversight and assurance within PAMB that processes, tools, and technologies are operating optimally to mitigate risks to information and technology assets.
Supervise and review the efficiency of implementation of information technology, security and data privacy and protection standards, policies, and procedures within the LBU to ensure compliance with regulatory, Prudential Group, and PAMB specific policy requirements.
Support PAMB operational functions as the need arises to lead risks to data privacy information and technology assets appropriately.
Provide independent, objective assurance that data privacy information and technology risks are being led to ensure they are within the risk appetite approved by the Board.
Work closely with the Group Technology Risk Management team to roll out and ensure the effective implementation of information and technology risk frameworks, policies, processes, and other initiatives.
Provide oversight support to Business in complying with data privacy regulatory requirements and Group data privacy standards.
Job Specification:
Degree in Information Security / Information Risk or Information Technology and appropriately certified.
At least 10 years related working experience, working knowledge in Information & Data Privacy Security/ Risk sector is highly encouraged.
Relevant IT management skills e.g. project management, application management and development, and operations will be an added advantage.
Able to interpret and apply the regulator guidelines and best practices on Information Security, Data Privacy and Information Risk requirements is a must.
Ability to assess risks of the business as a whole and keep apprised of current and emerging technology risks which could potentially affect the financial institutions risk profile.
High level understanding of technical controls, to be able to question and assess whether appropriate and in line with requirements.
Proven management and leadership skills.
Prudential is an equal opportunity employer. We provide equality of opportunity of benefits for all who apply and who perform work for our organisation irrespective of sex, race, age, ethnic origin, educational, social and cultural background, marital status, pregnancy and maternity, religion or belief, disability or part-time / fixed-term work, or any other status protected by applicable law. We encourage the same standards from our recruitment and third-party suppliers taking into account the context of grade, job and location. We also allow for reasonable adjustments to support people with individual physical or mental health requirements.
