Search by job, company or skills

Al Maryah Community Bank

Technology Risk Manager

Al Maryah Community Bank
Abu Dhabi, United Arab Emirates
6-10 Years
new job description bg glownew job description bg glownew job description bg svg
  • Posted 11 days ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Risk Management & Governance

  • The Technology Risk Manager is responsible for identifying, assessing, managing, and mitigating technology related risks across Mbank. This role ensures that IT systems, processes, and controls align with business objectives, regulatory requirements, and industry best practices while maintaining an acceptable technology risk posture.
  • Identify, assess, and monitor IT risks related to infrastructure, applications, data, cloud, and third-party services.
  • Develop and maintain the IT risk management framework, policies, and procedures
  • Conduct periodic IT risk assessments and control evaluations
  • Maintain IT risk registers and track remediation plans
  • Implement the risk and control framework, ensuring proper design and operational effectiveness by conducting independent testing.
  • Identify, assess, and monitor IT and emerging technology risks across infrastructure, applications, data, cloud, and third-party services.
  • Develop, enhance, and maintain the IT Risk Management Framework, policies, and procedures to address evolving threats and implement the IT Emerging Risk Policy to proactively manage new and evolving technology risks.
  • Conduct periodic IT risk assessments, scenario analysis, and control evaluations for new technologies.
  • Maintain IT risk registers, track remediation plans, and ensure timely closure of issues.
  • Identify, assess, manage, and mitigate technologyrelated risks across the organization.
  • Ensure that IT systems, processes, and controls are aligned with business objectives, regulatory requirements, and industry best practices.
  • Maintain an effective and acceptable technology risk posture for the organization while supporting operational efficiency and resilience.
  • Monitor and report IT incidents, ensuring root cause analysis, timely remediation, and implementation of corrective actions and preventive controls to strengthen resilience.

Compliance & Regulatory

  • Ensure compliance with global standards and CBUAE regulations
  • Support internal and external audits, manage findings, and drive remediation.
  • Collaborate with compliance and legal teams to interpret and implement regulatory requirements.

Security & Resilience

  • Partner with cybersecurity teams to assess and mitigate information security risks.
  • Evaluate and strengthen business continuity, disaster recovery, and incident response capabilities.
  • Review vulnerability assessments, penetration testing results, and oversee remediation actions.

Third-Party & Vendor Risk

  • Assess and monitor IT risks associated with vendors and third-party service providers.
  • Review contracts and SLAs for risk, security, and compliance implications.

Reporting & Stakeholder Engagement

  • Prepare insightful risk reports and dashboards for Head of operational risk, senior management, and risk committees.
  • Provide proactive risk advisory for new projects, systems, and technology changes.
  • Promote risk awareness and best practices across IT and business teams through training and engagement.

Experience & Knowledge

  • Bachelor's or master's degree in information Technology, Computer Science, Risk Management, or a related field.
  • 610 years of experience in IT Risk Management, Information Security, IT Audit, or other technology riskrelated roles within financial services or large enterprises.
  • Demonstrated experience working with and implementing Enterprise Risk Management (ERM) frameworks, including risk taxonomy development, risk appetite alignment, control assessments, and governance processes.
  • Strong awareness of emerging technology and cyber risks, including cloud concentration risk, thirdparty/fintech ecosystem risk, data privacy developments, and evolving regulatory expectations, with the ability to assess their potential impact on the bank's operational and IT risk profile.
  • Indepth understanding of cyber risk domains, including threat intelligence, phishing and social engineering risks, ransomware threats, data leakage, identity and access management (IAM), vulnerability and patch management, and secure configuration standards, with the ability to assess their impact on technology and business operations.

Competencies & Skills

  • Strong understanding of IT infrastructure, cloud technologies, and cybersecurity principles, including network architecture, cloud service models, access controls, vulnerability management, and secure configuration practices
  • Knowledge of internationally recognized IT and risk frameworks and standards, such as ISO 27001, COBIT, ITIL 4, CRISC, CISA, ISO 42001, and ISO 22301, and the ability to apply them within enterprise governance and operational risk environments.

  • Proficiency in Operational Risk Management Systems (ORMS) and the ability to design, interpret, and enhance dashboards, risk MIS, and analytics using tools such as Excel, Power BI, and other risk reporting platforms
  • Excellent analytical, communication, and stakeholder management skills with the ability to extract insights, prepare concise reports, and collaborate effectively across technology, business, and control functions.
  • Ability to translate technical risks into business impact providing clear, actionable insights to senior management and supporting riskbased decisionmaking

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Risk Management
Employment Type:
Full time

Job ID: 137123185

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 26-12-2025 07:22:53 PM
Homejobs in Abu DhabiTechnology Risk Manager