FIND YOUR BETTER AT AIA
If you believe in better, we'd love to hear from you.
About the Role
The Role oversees Risk and Compliance Governance and QA Governance.
Roles and Responsibilities:
Risk Management:
- Participate in the vendor management and due diligence process. Consult with business units when negotiating and contracting third-party service provider arrangements to ensure associated information security risks are considered.
- Perform necessary due diligence activities to determine third-party adherence with IT Policies and Standards requirements prior to establishing a business relationship.
- Conduct and manage necessary IT compliance control monitoring and testing activities to determine the effectiveness of the controls.
- Participate in IT compliance control monitoring programs to ensure IT compliance-related risks are managed to the appropriate level of acceptable residual risk.
- Monitor compliance on data purging requirements
- Establish and maintain an Education and Awareness Program for employees, members, vendors, and other third parties.
- Work with external and internal audit teams to managing and support audits.
- Complete audit testing, inquiry, observation and other analysis required to meet objectives of audit projects.
- Maintain the Risk Register whilst clearly and concisely articulating information security risks to key stakeholders (technical and non-technical), and prepare materials for senior management.
- Creating and developing reports and documentations as necessary
QA Governance:
- Governance & Strategy
- Define and maintain the enterprise-wide testing governance framework, policies, and standards.
- Ensure alignment of testing practices with SDLC, Agile, and DevOps methodologies.
- Drive continuous improvement in testing processes and tools.
- Planning & Oversight
- Oversee test planning, execution, and reporting across all projects.
- Ensure proper test coverage, traceability, and risk-based testing approaches.
- Compliance & Quality Assurance
- Ensure testing activities comply with internal audit, regulatory, and security standards.
- Conduct periodic reviews and audits of testing documentation and execution.
- Track and report key testing metrics and KPIs.
- Tools & Automation
- Recommend and support the implementation of testing tools and automation frameworks.
- Training & Enablement
- Provide guidance and training to project teams on testing standards and best practices.
- Promote a culture of quality and accountability across delivery teams.
Minimum Job Requirements:
- University graduate with a minimum of 10 years of relevant experience in IT Business Analyst/System Analyst, IT Applications, IT Testing.
- Insurance knowledge is a must preferably with LOMA certifications.
- Significant demonstrable experience working in Risk and Compliance in a multi-national organization or leading management consultancy or have done QA Governance
- Excellent understanding of SDLC, Testing and Collaboration Suites.
- Ability to identify innovation opportunities, define and deliver innovative ideas.
