Third Party Risk Manager

6 months ago


Ho Chi Minh City, Vietnam Positive Thinking Company Full time

At the Positive Thinking Company, we are looking for your talent to strengthen and grow our community of apps and platforms experts. Joining us is joining a company that resembles you, building itself as you express your talents, share your passion, and communicate your ideas.

So, would you like to take off with us to join the BOT team and become our next Third Party Risk Manager - InfoTrack in Ho Chi Minh City?

To be perfectly sure, here is all the information you need

The Risk Manager is responsible for the design, implementation, oversight, and continuous improvement
of InfoTrack’s security, data protection & ESG risk management program with a specific focus on
addressing third party risk across the vendor and supplier lifecycle as well as internal projects. This role is
responsible for understanding the regulatory, data protection and industry standards requirements in
Australia, evaluating the applicability and translating such requirements into enhancements to the
InfoTrack’s security, data protection and ESG risk management program.

The Risk Manager partners closely with InfoTrack’s internal stakeholders such as Risk and Compliance,
Legal, Information Security and IT, Procurement, Customer Account Management, Finance, and Product
business units to establish, enhance, implement, manage and maintain InfoTrack’s third party, ESG and
security & data protection risk management program.

**What you will do**:
The Risk Manager is responsible for:

- **Third Party Risk framework** across the third party lifecycle including:

- Managing the vendor inventory and risk tiering frameworks;
- Design and implement appropriate vendor risk management strategies tailored to vendor tiers
- Managing onboarding due diligence and ongoing periodic Security, ESG & Compliance risk and performance assessments; through to off-boarding due-diligence.
- ** Inbound Audits**: Managing InfoTrack’s response to ongoing Security, ESG and Compliance Risk Assessments performed on InfoTrack by clients, third parties, and regulatory authorities.
- ** Privacy Impact Assessments**: Managing InfoTrack’s internal and transfer privacy impact assessments for assets, products and third party’s that process personal and confidential data in compliance with relevant data protection laws.
- ** Record of Processing Activities**: maintain InfoTrack’s record of processing activities in compliance with relevant data protection laws, including the GDPR and Australian Privacy Act.
- ** Risk Management**: For all assessment types:

- Liaising with third parties and internal stakeholders;
- Reviewing assessments;
- Recommending controls, risk ratings & remediation treatment plans;
- Tracking remediation items to closure;
- Reporting risks and findings to key stakeholders.
- In addition to the risk management responsibilities, the Risk Manager is expected to:

- Lead or support strategic, complex, and cross-functional initiatives from inception design to execution and completion and will be accountable to deliver on critical business or strategic outcomes for InfoTrack.
- Develop detailed work plans, milestones, resource requirements, and status reports.
- Work closely with key project stakeholders at all levels to understand and prioritize business objectives, define scope, and establish requirements and constraints.
- Navigate across business, functional, organizational, and cultural lines to drive stakeholder alignment towards desired outcomes.
- Own project governance meetings and facilitate project working sessions. Anticipate, report, and mitigate potential project risks.

**What you should have**:

- Bachelor’s degree, with a relevant degree in Accounting, Computer Science/Security or related fields is highly desirable.
- Certification in risk and information security management (eg, CISA,) and data protection (eg, CIPP) is highly desirable, but not essential.
- ISO 27001 & 27701 certification & implementation experience will be well regarded, but not essential.
- 5 - 8 years experience in security & data risk management roles (ie, IT Risk Management or IT Audit) which may include experience in data governance, preferably within the IT sector.
- Strong understanding of regulatory obligations and international standards pertaining to information technology.
- Experience in using OneTrust including designing, implementing and managing security, PIA and ESG assessments, rules and workflows within OneTrust.
- Experience in designing and managing security, data and compliance risk management programs preferred (specific focus on third parties with nearshore/ offshore support models)
- Experience leading large, complex programs with proven track record of on-time and on-budge delivery.
- Strong stakeholder relationship management experience; proven track record of building rapport and establishing trusted advisor relationships.
- Excellent oral and written communication skills, including presentation skills (MS PowerPoint).
- Excell



  • Ho Chi Minh City, Vietnam Shopee Full time

    Department Risk Management- LevelExperienced (Team Lead)- LocationVietnam - Ho Chi Minh CityThe Compliance and Risk Management team ensures that Shopee complies with applicable regulations and is primed for success with the right checks and balances while safeguarding the interests of our stakeholders in an inclusive and sustainable digital ecosystem. The...


  • Ho Chi Minh City, Vietnam JACCS Full time

    TP.HCM **JOB DESCRIPTION** - Make and conduct internal regulations of security and SBV regulation request; - Ensure all Information Security Policy documents definition and Management of Information Security Risk Register; - Do risk assessment and risk treatment periodically; - Report for information security projects and risk remediation status; -...


  • Ho Chi Minh City, Vietnam HSBC Full time

    -Job Advert Details Some careers have more impact than others. If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you...

  • Chief Risk Officer

    6 months ago


    Ho Chi Minh City, Vietnam Talentnet Full time

    $5,000 - $8,000 - Financial Services RESPONSIBILITIES: - Lead the team, develop action plans and manage the implementation of tools, policies and regulations related to risk management and compliance Responsible & oversee on hiring, training & development, retention, attrition & performing of the team member. - Assist the CEO in developing and implementing...

  • Risk Management

    6 months ago


    Ho Chi Minh City, Vietnam Talentnet Full time

    $2,600 - $3,500 - Financial Services RESPONSIBILITIES: - Management:_ - Planning, designing and implementing an overall risk management process for the organization. - Well co—operate with other departments/ teams to develop product policies, risk acceptance criteria, system workflow of a new product. - Risk evaluation, which involves comparing estimated...


  • Ho Chi Minh City, Vietnam VNG Full time

    **Responsibility Overview**: **Security Risk Management**: - Coordinate the regular updating and enhancement of VNG's Information Security Management System (ISMS) documentation. - Safeguard the compliance of in-scope departments with established ISMS rules and regulations. - Create, manage, and update security awareness training programs to promote a...


  • Ho Chi Minh City, Vietnam Talentnet Full time

    Negotiable - Financial Services **RESPONSIBILITIES**: - Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits in accordance with NIST, ISO27001 standards - Manage and support SOC 2 and ISO 27001 audits and due diligence - Promote widespread implementation of ISO 27001 standards - Maintain and monitor a central...

  • Procurement Manager

    6 months ago


    Ho Chi Minh City, Vietnam Prudential plc Full time

    Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support...

  • IT Risk

    6 months ago


    Ho Chi Minh City, Vietnam Công ty tài chính TNHH MTV Quốc tế Việt Nam JACCS Full time

    **Mô tả công việc**: (Mức lương: 20 - 25 triệu VNĐ) - Make and conduct internal regulations which regards to security or regards to SBV regulation request; - Ensure all Information Security Policy documents definition and Management of Information Security Risk Register; - Risk Assessment and Risk Treatment to be reviewed on a regular interval...


  • Ho Chi Minh City, Vietnam Prudential plc Full time

    Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support...


  • Ho Chi Minh City, Vietnam Aloha Consulting Group Full time

    **Job Summary**: The Risk Management Supervisor role is pivotal in advising the Board of Management (BOM) on a spectrum of risks, including insurance, market, credit, operational, partnership, and liquidity risks. The primary objective is to identify potential threats and formulate plans to proactively prevent and mitigate problems. **Key...


  • Ho Chi Minh City, Vietnam Bảo Hiểm Nhân Thọ Phú Hưng Full time

    ĐỊA ĐIỂM: Hồ Chí Minh - Nội dung công việcMô tả công việc Risk management plays a pivotal role in the insurance industry. This role will be responsible for analyzing various types of risks, implementing strategies to minimize losses, and maintaining compliance with regulatory standards. **Key Responsibilities**: - Provide the advices...


  • Ho Chi Minh City, Vietnam VinaCapital Full time

    **Main duties**: This role is in charge of developing a strategy to sell a product. This involves planning and assisting in the development, marketing and distribution of a product. The role is part of the team who is responsible for providing a clear plan for their product, outlining goals as well as potential risks, challenges and opportunities. The...


  • Ho Chi Minh City, Vietnam Victoria's Secret Full time

    **Description** - Communicate compliance programs, policies and procedures to suppliers and factories to ensure the proper understanding on the audit requirement - Communicate with supplier or factories to collecting information for proposed audit - Arrange audits with 3rd party audit partner or internal audit team, assign appropriate resources and man day...


  • Ho Chi Minh City, Vietnam Savills Vietnam Full time

    **RESPONSIBILITIES** **Client acceptance** - Ensure compliance with client acceptance requirements, including anti-money laundering and conflict checks. - Develop and improve client acceptance policies and procedures. - Manage document procedures and conflict register. - Support policy implementation and audits. - Conduct client acceptance training. - Drive...


  • Thành phố Hồ Chí Minh, Vietnam DHL Full time

    **1/ Job Purposes**: - The Data Protection and Security Manager is responsible for safeguarding the organization’s sensitive data and ensuring the security and compliance of its information systems. This role combines strategic oversight of data protection initiatives and information security management, ensuring compliance with global data protection...

  • Internal Control

    6 months ago


    Ho Chi Minh City, Vietnam NavigosSearch Full time

    **What We Can Offer**: - 13th fixed month - Performance Bonus I. Internal Controls: leading operational risk management at local country - Work across functions and levels to drive control agenda to ensure controls are designed, functioning and sustainable embedded in daily operation - Work with control owners, stakeholders for mitigation plan in resolve...


  • Thành phố Hồ Chí Minh, Vietnam Công Ty TNHH Amaris Việt Nam Full time

    **Mô tả công việc**: (Mức lương: 5 - 100 triệu VNĐ) ABOUT THE JOB: - The IT Security, Risk and Controls specialist will be mainly responsible for IT controls effectiveness/efficiency assurance in operation/project delivery. - Work with other IT/business team to ensure all IT control requirements conversed to design of systems and...


  • Thành phố Hồ Chí Minh, Vietnam Công Ty TNHH Amaris Việt Nam Full time

    **Mô tả công việc**: (Mức lương: Thỏa thuận) ABOUT THE JOB: - The IT Security, Risk and Controls specialist will be mainly responsible for IT controls effectiveness/efficiency assurance in operation/project delivery. - Work with other IT/business team to ensure all IT control requirements conversed to design of systems and infrastructure...

  • Senior Project Manager

    6 months ago


    Ho Chi Minh City, Vietnam SCS Solutions Full time

    SCS Solutions *** - 40/4 Lam Son, Ward 2, Tan Binh, Ho Chi Minh- At office- Posted 5 hours ago- Skills: - Project Manager English **Job description**: - We are looking for passionate & ambitious Senior Project Manager to build up the next chapter together. The position is accountable for managing existing projects and working closely with BD team during...