This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Summary The Head of Resilience management for APAC-ME will be responsible for developing, implementing, and overseeing the bank’s strategy to ensure resilience against operational disruptions, cyber threats, and systemic risks. This role will lead resiliency initiatives across the Asia-Pacific and Middle East (APAC-ME) perimeter, ensuring alignment with regulatory expectations, industry best practices, emerging threats and Head Office principles/processes. The ideal candidate will collaborate closely with technology, risk management, compliance, and business leadership to enhance operational integrity and incident response capabilities. This is a high-impact role requiring deep expertise in operational resilience, operational risk management, business continuity planning and recovery strategy in a highly regulated financial environment. The Head of Resilience management for APAC-ME will oversee the crisis management by preparing, testing and coordinating crisis. The Head of Resilience management for APAC-ME will directly report to the Regional Head of Risk Management and control department and functionally report to Head of Resilience management Head office. He will work in close relationship with him and follow the same standard and process.
Job Responsibility
Develop and implement a comprehensive operational resiliency strategy aligned with regulatory requirements and industry standards
Define resilience objectives, key risk indicators (KRIs), and performance metrics to measure the effectiveness of resiliency programs
Collaborate with senior leadership to embed resilience principles into business and technology processes
Stay ahead of emerging risks, regulatory changes, and threat landscapes to refine and enhance resilience strategies
Oversee the development and execution of the bank’s resilience framework, ensuring rapid response and recovery from incidents
Lead tabletop exercises and simulations to test cyber incident response and business recovery capabilities
Coordinate with internal stakeholders during crisis
Coordinate and maintain enterprise-wide business continuity and disaster recovery plans with the different stakeholders in the Entities, ensuring readiness to sustain critical business operations during disruptions
Coordinate and conduct with the different stakeholders in the Entities regular BC/DR testing, audits, and training sessions to validate effectiveness and improve preparedness
Work closely with technology teams to ensure recovery time objectives (RTOs) and recovery point objectives (RPOs) are met for critical systems
With the different stakeholders in the Entities, establish and maintain alternative operational processes to mitigate any disruptions
Ensure compliance with all applicable legal, regulatory and internal frameworks related to, but not limited to, operational and resiliency requirements
With the different stakeholders in the Entities, serve as a key liaison with regulatory bodies and auditors, preparing reports and responses to inquiries regarding resilience programs
Develop governance frameworks, policies, and procedures to enforce resilience-related mandates across the regional organization
Foster a culture of compliance and resilience awareness throughout the region
With the different stakeholders in the Entities: Assess and mitigate risks associated with third-party vendors, ensuring they meet the bank’s operational and resilience standards
Establish rigorous due diligence processes for critical suppliers, including resilience testing and contractually mandated recovery capabilities
Develop contingency strategies for vendor-related disruptions and ensure robust exit strategies for key service providers
Collaborate with procurement and risk management teams to integrate resilience considerations into vendor selection and onboarding processes
Lead a cross-functional resiliency team, fostering collaboration between IT, BCP manager, risk management, compliance, ISS and Business Lines units
Provide executive leadership with regular briefings on resilience posture, key risks, and strategic initiatives
Advocate for resilience investments, ensuring adequate funding and resource allocation for critical initiatives
Champion a culture of resilience by driving awareness, training, and engagement across the region
Requirements
10+ years of experience in operational resilience, business continuity, or risk management within the financial sector
Proven leadership experience
Deep understanding of regulatory requirements in Asia DORA, with experience managing regulatory interactions
Bachelor’s or Master Degree in Computer Science, Information Technology, Business continuity or equivalent
Professional certification such as CBCM, CBCI, CBCP (preferred)
Expertise in incident response methodologies, business continuity planning and in cyber resilience frameworks
String knowledge of CIB activities in order to be able to talk with the Business Lines and understand their constraints
Strong knowledge of operational resilience risk management, threat intelligence, and IT disaster recovery strategies