Director, Disaster Recovery for Information Risk Management

Global Information Risk Management (GIRM)

is an independent risk function that provides risk and controls guidance to a variety of stakeholders that information risks are appropriately managed and in alignment with risk appetite. GIRM is responsible for providing independent oversight of policies, procedures and standards concerning the measurement, monitoring, control and reporting of information risks.

Reporting to the AVP of Information Risk Management, this role will be responsible for building and operationalizing the Disaster Recovery Center of Excellence (DR CoE) under GIRM. This role will lead the design, implementation, and continuous improvement of the centralized function to provide oversight and challenge over the implementation and compliance of the Disaster Recovery Standard. The Lead will collaborate with Technology Risk Management Practice Area (TRM PA) and segment Information Risk Officer (IRO) teams to ensure consistency, transparency, and effectiveness in DR oversight.

Position Responsibilities

Team Leadership : Recruit and onboard DR CoE team members, provide coaching and performance management.

Team governance development : Define and maintain DR CoE SOP, SLA / KPIs and reporting templates.

Stakeholder Management : Act as the primary liaison between the DR CoE and key stakeholders, including the TRM PA, segment IRO teams , and their business partners (e.g. DR coordinators.). Facilitate alignment on oversight expectations, testing schedules, and reporting requirements, ensuring consistent communication and collaboration across functions and geographies. Lead / Host an engaging session to gather feedback, comments and challenges, as well as providing a comprehensive and effective tracking mechanism to manage change.

Disaster Recovery Oversight Execution : Coordinate the intake and prioritization of disaster recovery (DR) activities requiring oversight. Lead the team in performing independent challenges and review of DR tests, ensuring that observations and outcomes are clearly documented and stored in central repositories. Liaise with business partners to communicate oversight findings and monitor the creation and tracking of issues and corrective action plans (CAPs) where gaps are identified.

Performance Reporting : Develop and deliver regular DR CoE performance reports on progress of activities, outcome, gaps and remediations, as well as metrics reporting to senior leadership.

Required Qualifications

Minimum 7-9 years of experience in information risk management plus strong knowledge of disaster recovery, risks and controls

Broad knowledge of financial services / insurance business and related products

In-depth knowledge in information systems architecture, infrastructure and application recovery, and DR testing methodologies. Business Continuity and Disaster Recovery, and operational risk assessment tools such as RCSA, Incidents and Losses, Root Cause Analysis, Scenario Analysis

High proficiency in MS Office Products and data analytics tools such as PowerBI is a PLUS

Solid written and oral communication skills

Strong influencing skills with the ability to build effective relationships, both within and across divisions

Detail-oriented with excellent analytical, critical thinking and problem-solving skills with the ability to think strategically

Self-starter with the ability to work with little guidance

University undergraduate degree

Ability to manage a team of high skilled and seasoned risk and / or IT professionals

Must be able to handle multiple competing priorities

Influence individuals to modify risk management behavior

Support budget and resource management for the CoE team

Preferred Certifications

Certified Business Continuity Professional (CBCP)

Certified Business Resilience IT Professional (CBRITP)

CISA / CISM / CISSP / CRISC

When you join our team

We’ll empower you to learn and grow the career you want.

We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.

As part of our global team, we’ll support you in shaping the future you want to see.

關於宏利和恒康

宏利金融公司是一家業界領先的國際金融服務商，致力於幫助人們實現「輕鬆投資理財，樂享豐盛人生」。若要進一步了解我們，請瀏覽

宏利是平等機會僱主

在宏利／恒康，我們擁抱多元。我們致力於吸引、培養及挽留和所服務客戶同樣多元的員工，並從而營造包容的工作環境，接納文化和個體差異。我們矢志維持公平的招聘、挽留、晉升及薪酬制度，我們管理的所有實踐及項目不會因種族、血統、原籍地、膚色、族裔、國籍、宗教或宗教信仰、信仰、性別（包括懷孕及其相關情況）、性取向、遺傳特徵、退伍軍人身份、性別認同、性別表達、年齡、婚姻狀況、家庭狀況、殘疾或受適用法律保護的任何其他因素而區別對待。

我們的首要任務是消除障礙，為員工提供平等就業機會。

人力資源部代表將盡力為應徵過程中提出要求的申請人提供合理協助。申請人要求提供協助所分享的信息將會按照適用法律及宏利／恒康政策儲存及使用。

申請過程中如需協助，請聯絡 。

Working Arrangement

混合式

#J-18808-Ljbffr