milkyway 6
milkyway 7
milkyway 8

Risk, Compliance and Governance Support (1 Year Contract)

SCB 10X
January 29, 2026

Job Summary:

To support the execution of risk management, compliance, governance, and data protection (PDPA) activities through documentation, coordination, and monitoring, enabling effective implementation of group policies

Job Descriptions:

Risk
  • Maintain enterprise risk register, risk inventory and risk reporting in alignment with SCBX Group frameworks
  • Support periodic operational risk assessments, risk control self-assessment (RCSA) and risk profile updates
  • Prepare supporting documentation and evidence for internal and group-level review
 
Incident Management (Documentation & Governance Support)
  • Maintain incident management documentation, records, and logs in accordance with internal policies and Group requirements
  • Support documentation of incident details, root cause analysis, impact assessment, and corrective actions
  • Coordinate with relevant stakeholders (e.g. business, IT, Compliance) to collect incident-related information and supporting evidence
  • Track incident remediation actions and update incident records for internal and Group-level reporting
GRC System Rollout Support (Group Initiative –Start from March 2026)
  • Support preparation and readiness activities for the SCBX Group GRC system rollout
  • Assist in data preparation, data mapping, and validation for migration of risk, incident, and control information into the GRC system
  • Support user acceptance testing (UAT), issue logging, and coordination with Group and internal stakeholders
  • Maintain supporting documentation, user guides, and process documentation related to GRC system usage
  • Support post-implementation stabilization activities, including data updates and reporting support
Compliance
  • Support compliance testing in response to the approved compliance plan and regulatory requirement and support the development of annual compliance plan
  • Support document preparation and report submission to regulators
Group Policy Adoption and Regulatory Communication
  • Review and interpret Group-level policies and standards to understand policy intent, key requirements, and applicability to SCB10X
  • Conduct impact analysis of Group policies on SCB 10X business operations, processes and perform gap assessments between Group policy requirements and existing SCB 10X policies, standards, SOPs, and practices
  • Draft SCB 10X policy or standard versions (or policy addenda) aligned with Group policies and tailored to SCB 10X business context
  • Develop and maintain control checklists mapping Group policy requirements to SCB10X controls, evidence, and responsible owners
  • Coordinate with Risk, Compliance, IT, and business owners to validate gaps, agree remediation actions, and track implementation progress
  • Communicate policies and regulatory requirements and conduct the relevance training
 
PDPA & Data Protection Documentation Support
  • Maintain PDPA-related documentation (e.g. ROPA, data flow diagrams, DPIA templates)
  • Ensure completion of PDPA compliance evidence and documentation from business units and vendors
  • Track PDPA gaps, action items, and remediation progress

Qualifications:

  • Bachelor’s or Master’s degree in Business Administration, Accounting, Law, Risk Management, or a related field
  • 3–5 years of experience in Risk, Compliance, Internal/External Audit, Governance, or related fields
  • Strong administrative skills with the ability to follow instructions accurately and deliver high‑quality documentation
  • Excellent prioritization and organizational skills; able to manage multiple tasks and deadlines effectively
  • High proficiency in Microsoft Office tools (Word, Excel, PowerPoint) with strong formatting, documentation, and presentation support capabilities
  • Ability to read, interpret, and draft governance, policy, and regulatory documents in English
  • Proficiency in English (written and reading comprehension required; presentation skills are a plus)
  • Strong coordination and stakeholder management skills
  • Experience in the banking or financial services industry is preferred
  • Experience with PDPA, data protection, or regulatory documentation is preferred

Interested candidates, please submit your CV and Cover Letter to [email protected]

Only shortlisted candidates will be contacted by SCB 10X.

SCB 10X Co., Ltd. (Head office)

No. 2525, One FYI Center Building, Office zone, Unit number 1/301-1/305, 3rd floor, Rama 4 Road, Klongtoei, Klongtoei, Bangkok 10110

Upon submitting your data to SCB 10X Co., Ltd. (the “Company”), you represent that such data truly belongs to you and you consent to the
Company to collect and use such data for the purpose of recruitment of the Company.

Use and Management of Cookies

We use cookies and other similar technologies on our website to enhance your browsing experience. For more information, please visit our Cookies Notice.

Reject
Accept