Senior Manager - Operational Risk, IT

The purpose of this role is to provide independent oversight and effective challenge to the technology risk profile across the bank. This position ensures that IT and cyber risks are identified, assessed, monitored, and reported in line with the Operational Risk Management Framework and Sharia-compliant banking practices.

Key Responsibilities

• Oversee the identification, assessment, and management of all technology-related risks across all business and support units in ADIB in line with the bank’s approved Operational Risk Management Framework.
• Early identification of emerging technological risks such as Artificial Intelligence (AI), machine learning (ML), and Digital Assets.
• Provide independent and critical challenge to the first line (IT, Information Security, and Digital Banking) on risk assessments, control design, and remediation actions.
• Act as the GORM SPOC in IT-related committees/boards to assess potential risks related to system changes, cloud adoption, digital transformation, and mobile enhancements.
• Oversee and ensure the effective implementation of the bank’s Governance, Risk, and Compliance (GRC) system.
• Review and challenge technology-related Key Risk Indicators (KRIs), risk acceptances, and Risk and Control Self-Assessments (RCSAs).
• Monitor technology operational risk and fraud incidents, perform root cause reviews, and ensure timely closure of corrective actions.
• Track regulatory and audit issues related to Technology Risks and ensure risk governance is followed in their resolution.
• Contribute to risk reporting submitted to senior management and relevant committees, in addition to ad hoc reporting.
• Support scenario analysis for cyber and IT failure events, including business continuity and operational resilience elements.

Requirements

• Strong understanding of operational risk frameworks and governance.
• Broad knowledge of Islamic banking principles and products.
• Familiarity with current and emerging technologies, trends, and hypes.
• Ability to apply logical and critical thinking.
• Excellent analytical, communication, and report-writing skills.
• Strong stakeholder management and influencing skills.

Previous Experience

• 10+ years in IT risk, cyber risk, or technology-related risk function in Financial Institutions (FIs).
• Experience with control frameworks such as NIST CSF, ISO 27001, or COBIT.
• Experience with GRC systems and structures.
• Good knowledge of operational and fraud risks associated with technology and systems.

Location
United Arab Emirates