Japan Head of Technology Risk & Controls

JOB DESCRIPTION

The Head of Japan Technology Risk and Controls is an integral leader in the Technology Risk and Controls (TRC) team. This position is has many responsibilities, including but not limited to; managing internal and external audits; managing risk associated with the transformation program; assessing and tracking IT risk of third parties as well as other IT issues; managing IT compliance with regulations that have cybersecurity, privacy or other technology implementations; deliver risk and controls reporting; and reviewing and implementing IT policies and standards. This leader will work closely with senior management across IT, Operations, Legal, Internal Audit and External Audit.

The Head of Technology Risk and Controls will be responsible for a number of critical initiatives, including the following:

• Manage Internal & External Audits 
  • Serve as the primary contact with External Audit for management of the Japan SOX lifecycle.
  • Monitor changes in the IT environment, assess their impact on IT controls, and take proactive action
  • Facilitate collection of IT artefacts to provide the External Auditor and review prior to submission
  • Drive the drafting of SOX MAPs, working with the MAP owner to confirm that (a) the MAP addresses the root cause of the issue; and (b) that there is clear closure criteria
  • Monitor MAPs, understanding where there are significant issues, and what can be done to address these issues, escalating as appropriate
  • Validate MAP closures address the root cause of the issues
  • Provide management reporting on SOX issues

• Manage Risk Associated with the Transformation Program
  • Monitor progress of Japan’s Transformation Program, identifying risks early and working with the Japan CIO to address them
  • Work with the CIO to confirm appropriate governance is in place for IT spending, IT changes, etc.

• Assess & Monitor the Risk of IT Issues including Third Party Issues:
  • Assess the risk associated with any IT issues, whether identified within AIG or IT issues associated with a third party
  • Monitor the issues through resolution
  • Provide management reporting

• Manage IT Compliance with Regulations:
  • Review IT-related regulations to identify any potential compliance gaps with the regulation
  • Monitor MAPs, understanding where there are significant issues, and what can be done to address these issues, escalating as appropriate  
  • Create reporting to communicate emerging risks stemming from these regulations, and compare against similar regulations globally

• Monitor Remediation of IT Internal Audit issues:
  • Partner with Internal Audit and IT functions to evaluate issues identified by Internal Audit
  • Support and drive the drafting of the MAPs, working with the MAP owner to confirm that (a) the MAP addresses the root cause of the issue; and (b) the closure criteria are clear
  • Monitor MAPs, understanding where there are significant issues, and what can be done to address these issues, escalating as appropriate  
  • Provide management reporting on Internal Audit issues

• Deliver risk and controls reporting:
  • Develop, evaluate, monitor and report a consistent view of risk metrics, parameters and data
  • Produce critical risk dashboards and reports for various purposes/audiences, providing optimal production (timing & quality) and consistency of information reported
  • Provide regular reporting to local boards
  • Ensure local regulatory and customer reporting requirements are being met

• Implement IT’s policies and standards across Japan:
  • Provide feedback to policy and standard owners to review and refresh the existing policy suite
  • Identify gaps and drive strategic change/improvement
  • Once the policies and standards are updated and published, provide training in Japan
  • Implement the policies and standards in Japan

JOB REQUIREMENTS

Experience

• Bi-lingual (Japanese, English)
• 15+ years of experience within technology risk, control and governance, IT Internal Audit or SOX disciplines

• Required: Bachelor’s degree

• Strong expertise in SOX
• Understanding of IT Audit principles and best practices
• Ability to oversee multiple processes, action plans and key stakeholders simultaneously
• Experience raising awareness of issues to key stakeholders across technology

  Core Skills

• Demonstrate effective leadership skills
  • Clear, concise written and oral communication skills coupled with the ability to drive agreement using information and interpersonal ac Clear, concise written and oral communication skills coupled with the ability to drive agreement using information and interpersonal acumen
  • Proven track record of drawing conclusions, making decisions, and using data to solve problems
  • Ability to define solutions from ambiguous scenarios

• Maintain excellent interpersonal and oral/written communication skills
  • Active listener
  • Ability to drive change through influence
• Excellent negotiation, collaboration, facilitation and coordination
  • Negotiate prioritization and treatment of risk issues that span:
    • Audit obligations
    • Across various lines of business and shared service areas
  • Excellent program, project and team management

At AIG, we value in-person collaboration as a vital part of our culture, which is why we ask our team members to be primarily in the office. This approach helps us work together effectively and create a supportive, connected environment for our team and clients alike.

Enjoy benefits that take care of what matters

At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family.

Reimagining insurance to make a bigger difference to the world

American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

Welcome to a culture of belonging

We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The talent of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.  If you believe you need a reasonable accommodation, please send an email to [email protected].  

Functional Area:

IT - Information Technology

AIG Business Partners KK