Job Openings IT Risk & Compliance Manager

About the job IT Risk & Compliance Manager

We are seeking an experienced IT Risk & Compliance Manager to oversee technology risk management, regulatory compliance, and control frameworks within a regulated financial services environment. This role ensures that IT systems, processes, and controls align with regulatory requirements, internal policies, and industry best practices.

Key Responsibilities

  • Develop, implement, and maintain the IT risk management framework aligned with enterprise risk policies.

  • Identify, assess, and mitigate technology risks across applications, infrastructure, cloud, and third-party systems.

  • Ensure compliance with regulatory, audit, and governance requirements relevant to banking and financial services.

  • Lead IT compliance activities related to central bank regulations, ISO 27001, PCI DSS, SOC, and internal control frameworks.

  • Coordinate and manage internal and external IT audits, regulatory inspections, and risk assessments.

  • Oversee IT policies, procedures, and control documentation, ensuring regular reviews and updates.

  • Monitor and track risk issues, audit findings, and remediation plans, ensuring timely closure.

  • Work closely with IT, cybersecurity, legal, and business teams to embed risk and compliance controls into projects and operations.

  • Assess and manage third-party and vendor IT risks, including due diligence and ongoing monitoring.

  • Prepare and present risk and compliance reports to senior management and governance committees.

Required Skills & Experience

  • 5–8 years of experience in IT risk, technology risk, IT audit, or compliance within banking or financial services.

  • Strong understanding of IT governance, risk, and control frameworks (COBIT, ITIL, NIST).

  • Experience working with regulators, auditors, and risk committees.

  • Solid knowledge of information security, cybersecurity controls, and data protection regulations.

  • Ability to interpret regulatory requirements and translate them into practical IT controls.

Regulatory & Framework Knowledge

  • Central Bank / Regulatory Authority requirements

  • ISO 27001 / ISO 22301


Or refer someone