milkyway 6
milkyway 7
milkyway 8

Risk Management and Governance Specialist (1 Year Contract)

SCB 10X
May 26, 2026

Job Summary:

To own risk management execution task and day‑to‑day risk management activities.

Job Descriptions:

 
  1. Risk Monitoring & Reporting 20%
  • Monitor KRIs and risk indicators
  • Support management and board‑level risk reporting and presentations, prepare monthly and quarterly risk reports for Risk Committee
  • Maintain and update enterprise risk register and risk assessment
  • Map key risks to controls and track mitigation action plans
  • Perform stress testing, scenario analysis, and risk impact assessment to support risk monitoring
  • Analyze risk data and provide insights to support proactive risk management
  1. Operational Risk 20%
  • Coordinate and support first line or business units on the annual and ad‑hoc risk assessment exercises e.g., stress test, Non‑IT RCSA.
  • Coordinate IT RCSA and follow‑up actions with Group Tech Risk
  • Develop and maintain BCP / BCM documentation and coordinate testing
  1. Policy Implementation 25%
  • Ensure SCBX Group policy is implemented and localized
  • Maintain policy inventory, acknowledgement records, and certification tracking
  • Coordinate policy review cycles and gap assessment activities with policy owners or business functions
  1. GRC System Owner & Coordinator 20%
  • Act as primary coordinator and internal owner for GRC system implementation and day-to-day administration
  • Coordinate with SCBX Group and relevant stakeholders on GRC-related activities and timelines
  • Maintain risk/control libraries, workflows, issue tracking, and remediation status within the GRC platform
  • Support system adoption, data quality review, user coordination, and evidence management
  1. DPO Coordination Support 15%
  • Support Data Protection Officer (DPO) related governance and coordination activities
  • Maintain personal data inventory, consent form, and regulatory documentation e.g., ROPA, LIA, Data Processing Agreement where applicable,
  • Coordinate data privacy awareness, policy acknowledgement, and evidence collection activities
  • Support data incident tracking, remediation follow-up, and reporting coordination
  • Coordinate with Group Legal & Compliance and internal stakeholders on data privacy governance requirements e.g., report data breach incident
 

Qualifications:

  • 2–5 years’ experience in Risk Management, Internal Control, Internal Audit or Consulting.
  • Understanding of venture capital/ investment fundamentals
    Strong analytical skills with proficiency in Microsoft Excel, including data analysis, dashboard preparation, and risk/stress testing models.
  • Good command of English, both written and spoken, with the ability to prepare reports and coordinate with stakeholders effectively.
  • Good communication and interpersonal skills, capable of working collaboratively in a team and liaising with multiple stakeholders.
  • Proactive, organized, and able to manage multiple tasks in a fast-paced environment.
  • Proficiency in Microsoft Office applications (Excel, Word, PowerPoint)
Upon submitting your data to SCB 10X Co., Ltd. (the “Company”), you represent that such data truly belongs to you and you consent to the
Company to collect and use such data for the purpose of recruitment of the Company.

Use and Management of Cookies

We use cookies and other similar technologies on our website to enhance your browsing experience. For more information, please visit our Cookies Notice.

Reject
Accept