top of page

Career

Technology Risk Manager

Risk Management

|

Permanent

Risk Management

Permanent

About Us

Do you want to be part of Thailand banking transformation? Data is the core of the new financial services era, we are open for the opportunity to be part to drive this change at the core.

SCB DataX is a new venture of SCBx, the mothership of the financial technology business group comprising Siam Commercial Bank (SCB) and other subsidiaries, a leading financial services and digital services holdings in Thailand and ASEAN.

As part of the transformation of SCBx group of product and technology companies, under the SCBx brand, SCB DataX is the technology company to centralize data and provides AI/ML and data science services and products to the SCBX and its subsidiaries.

With a leading-edge cloud native data & AI platform, our vision is to support the group to providing everyone in our region with the opportunity to prosper.

We work on forward-thinking challenges of centralizing, analyzing and sharing information. We collaborate with companies and experts in many different domains, embrace diversity and all that while having a good laugh and joy in work.

Discover job openings on our career page. To apply, email with the role's title as the subject, attach your CV, and specify your contact information. We're eager to learn more about you.

 I acknowledge that I have read and agreed to DataX's Terms and Conditions and Privacy Notice

Benefits

Other

Preferred Qualifications

Qualifications

  • Bachelor’s degree or higher in Information Technology, Cybersecurity, Risk Management, or a related field. 

  • Relevant work experience at least 12+ years of experience in technology risk management, with a minimum of 5 years in any technology role and minimum of 3 years in a leadership role. 

  • Proficiency in identifying, evaluating, and mitigating technology risks. 

  • Knowledge of regulatory requirements such as BOT or SEC, and best practices in IT governance. 

  • Familiarity with risk management frameworks and tools, such as NIST, ISO 27001, and COBIT. 

  • Strong leadership skills to manage and guide technology risk management in the team and across organization. 

  • Ability to effectively communicate risk-related information to stakeholders at all levels. 

  • Commitment to staying updated with the latest trends and developments in technology risk management. 

  • Strong sense of ethics and integrity in handling sensitive information and making decisions. 

  • Candidates who are bilingual in Thai and English are preferred. 

Responsibilities

  • Develop and maintain technology risk management policies, standards and processes. 

  • Communicate technology risk management policies, processes and standards to all relevant parties and advise them on adherence to the same.  

  • Operate and manage all technology & information security (IT & IS) risk management activities include exception mechanisms, scope for DataX organization and every service which DataX provides to SCBX group companies.  

  • Work closely with various stakeholders across the organization to ensure a cohesive approach to technology risk management. Assist, challenge and monitor risk owners in applying technology risk management tools, and provide guidance on necessary mitigation measures. 

  • Collaborate closely with the SCBX Technology Risk team to ensure that the implementation of technology risk management policies, standards, and processes is fully aligned with the group’s strategic direction and governance approach.

  • Ensure IT & IS control catalogue is defined, implemented and complied with SCBX group/regulatory requirements and international best practices.  

  • Implement continuous monitoring of IT & IS risks and controls. Review risk assessment, risk mitigation plans and support in structure and escalation. 

  • Regularly review IT & IS risk profile to address new and evolving threats. Develop and update a set of technology leading risk indicators to assist in mitigating future technology risks. 

  • Regular review of IT third party risks to ensure that existing third parties remain compliant. Perform evaluation of third parties IT & IS risk posture, to ensure all third parties adhere to the IT & IS requirements and controls. 

  • Work closely with project owners to perform effectiveness of IT Project Risk management. Assist stakeholders in validating risk assessments, which comprise analyzing, identifying, describing, and quantifying risks that impact all business risks. 

  • Ensure all technology risk activities are conducted in the GRC tool as centralized repository. Perform analysis of technology risk metrics for emerging risk trends and proactively work with business/support units to address the emerging risks. 

  • Join the related meetings if need, such as Change Advisory Board (CAB), Technology Steering Committee (TSC) and Risk Management Committee (RMC). 

  • Regular report technology risk activities, risk profiles and incidents to senior management and/or risk management committee (RMC) to ensure all technology/security-related risks are effectively managed. 

  • Lead the development, management and implementation of IT & IS literacy program to raise awareness and promote IT & IS risk culture within DataX and measure its effectiveness. 

  • Respond to internal/external audit programs, findings and coordinate remediation planning for related IT & IS activities to mitigate the risks. 

  • Manages technology risk team by developing strategies, deploying skilled personnel, providing training, ensuring compliance, and continuously improving practices. Ensure the team, individuals, have the necessary skills and knowledge to effectively manage and mitigate technology risks.  

  • Regular reviews and updates the framework to address emerging risks and regulatory changes. Coordinate regulatory reviews of technology within DataX and work closely with compliance team, management team and stakeholders, to provide periodic updates on initiatives to meet regulatory commitments and internal policies and standards related to technology. 

  • Encourage feedback across all related functions in DataX on risk management practices and use this feedback to drive continuous improvement in risk management processes.  

About Team & Role

At DataX, we recognize the critical role that effective risk management plays in our operations. DataX Risk Management division is responsible for data governance, privacy, security, technology risk, operational risk, model risk, business continuity, legal and compliance. We are tasked with development and execution of risk management strategies and ensuring the integrity of our processes and the safeguarding our organization.


This role sits within IT & IS Risk of the Risk Management division.


As a dynamic and innovative AI/ML startup operating in the fintech industry, we are seeking a motivated and skilled Technology Risk Manager to join our team. This role offers an exciting opportunity to contribute in design and development of our risk management processes in a fast-paced environment.

In this role, you will be exposed to new ways of working, new risk management techniques, complex business model, and a collegial working environment. This role reports to DataX Chief Risk Officer (CRO).  

bottom of page