Job Description

  • Provide timely advice and recommendations to the CRO in all operational risk matters. 
  • Review and sign-off all non-financial risk agenda that are submitted for approval of the CRO. 
  • Prepare risk memoranda for all matters related to non-financial risks for submission to the CRO, CEO, Group Risk, and/or to management-level committees. 
  • Manage the timely delivery of reporting requirements as per Operational Risk Policy of the Group and BSP MORB regulation. 
  • Review contracts, new vendors, new OSP, new products, and new projects and provide risk and control assessment and advice to stakeholders and to the CRO. 
  • Evaluate partners, vendors and OSPs and recommend approval to the CRO and the Vendor and Outsourcing Committee. 
  • Inspire and provide mentorship, training, and proactive leadership to the IT Risk Security Officer and the Operational Risk Control Officers to maintain a high performing team. 
  • Provide high visibility to various stakeholders to effectively embed NFRM controls in policies, processes, products, activities, contracts and other operational areas of the bank. 
  • Update, maintain, and calibrate the bank's operational risk appetite, limits, and tolerances and coordinate with Group Risk for approval and reporting. 
  • Maintain and update the Branch's Vendor and Outsourcing Policy and provide clear-cut guidelines in the vendor and OSP procurement and evaluation process. 
  • Deliver strong leadership in the Vendor and outsourced service provider (OSP) accreditation and evaluation and collaborate with the procurement and compliance team to manage a timely and transparent flow of information. 
  • Manage the Fraud Control activities and reporting requirements
  • Proactively manage the implementation and performance of control activities in information technology risk, information security, data privacy, and business continuity risks. 14. Review, challenge, and calibrate the continued relevance of the operational risk models and tools such as RCSA, LED, Risk Register, BIA, and KRIs. 


  • Bachelor’s degree in Accounting, Finance, Business, Operations Management, or Information Technology from a reputable university 
  • Post-graduate degree in Business is an advantage 
  • Certification in Accountancy, Internal Audit, Operational Risk, Information Security, or Information Systems is an advantage -4.Agile collaborator, high performing, and highly effective oral and written communication 
  • With good moral character, and ability to inspire colleagues

Live your purpose with CIMB Bank!

Download the CIMB Bank PH app and step into the world of secure and convenient digital banking.