Logo Sumitomo Mitsui Banking Corporation

IT Risk Manager - Assistant Vice President

Job

  • Level
    Experienced
  • Job Field
    IT, Security
  • Employment Type
    Full Time
  • Contract Type
    Permanent employment
  • Salary
    64.000 to 96.000€ Gross/Year
  • Location
    Frankfurt
  • Working Model
    Hybrid, Onsite
  • Job Summary

    In this role, you are responsible for identifying and managing IT and cyber risks. You design and operate controls, ensuring compliance with regulatory requirements across the EMEA region.

    Your role in the team

    • The IT Risk Manager is a First Line of Defence role responsible for owning and managing technology and cyber risk across EU AG.
    • The role sits within Technology and Cyber and ensures risks are identified, assessed, managed and remediated in line with internal frameworks and EU regulatory requirements.
    • As a 1LOD role, the IT Risk Manager is responsible for the design, operation and remediation of controls rather than independent oversight or challenge.
    • The role embeds effective risk management, governance and reporting within day-to-day Technology and Cyber activities.
    • The role also supports EMEA technology and cyber risk initiatives, driving consistency and alignment across the region.
    • In addition, the role coordinates regulatory and audit responses, ensuring EU AG meets its obligations across Germany, France, and Belgium.
    • The role supports the ongoing development of the EU AG risk and control environment, ensuring risks are effectively managed in line with EU regulatory expectations.
    • The role works closely with EMEA Technology and Cyber Risk teams to ensure alignment with regional frameworks and initiatives.
    • It also interfaces with Group and Second Line teams to maintain alignment with enterprise risk standards.
    • The role is key to supporting regulatory engagement, audit readiness and the implementation of DORA and wider ICT risk requirements.
    • Own the identification, assessment, and management of IT and cyber risks across EU AG.
    • Maintain the technology and cyber risk profile, ensuring risks are accurately assessed and actively managed.
    • Embed risk management practices within Technology and Cyber teams as part of day to day operations.
    • Drive remediation activities to address control gaps, ensuring delivery against agreed timelines.
    • Design, implement and operate technology and cyber controls in line with SMBC standards.
    • Ensure controls are effective, documented and operating as intended.
    • Support control testing and evidence gathering to demonstrate control effectiveness.
    • Maintain traceability between risks, controls, issues and remediation actions.
    • Own the coordination and delivery of responses to EU regulators across IT and cyber risk topics.
    • Ensure compliance with ECB and EBA expectations and applicable local regulatory requirements.
    • Support the interpretation and implementation of DORA requirements within EU AG.
    • Track regulatory commitments and ensure delivery with a clear audit trail.
    • Own and coordinate responses to internal and external audits impacting EU AG.
    • Ensure timely provision of complete and accurate audit evidence.
    • Manage audit findings, ensuring remediation plans are defined, tracked and delivered.
    • Drive sustainable closure of issues and reduction of repeat findings.
    • Operate IT and cyber risk governance forums across EU AG.
    • Produce regular risk reporting for senior management and key stakeholders.
    • Provide clear visibility of risk exposure, control effectiveness and remediation progress.
    • Escalate material risks and issues in line with governance requirements.

    This text has been machine translated. Show original

    Our expectations of you

    Qualifications

    • Strong understanding of EU regulatory requirements including ECB, EBA and local regulators.
    • Starkes Verständnis von Kontrollrahmen und Betriebseffektivität.
    • Strong stakeholder management and communication skills.

    Experience

    • Strong experience in IT risk and cyber risk within a First Line role.
    • Proven experience owning and managing risks and controls within Technology or Cyber functions.
    • Practical knowledge and experience of DORA and ICT risk management.
    • Experience managing regulatory interactions and audit responses.
    • Experience supporting regional or cross-entity risk initiatives across EMEA.

    This text has been machine translated. Show original

    What we offer

    • The anticipated annual salary range for this role is €64,000 - €96,000, with the final offer determined based on the candidate's skills, experience, role scope, location, and relevant market factors.
    • In addition to base salary, the role may be eligible for a discretionary incentive award and a competitive benefits package, including core benefits such as pension provision.
    • We offer competitive company benefits, centred around promoting positive well-being and work-life balance.
    • We also believe in fostering a diverse and inclusive work environment, where all team members' perspectives and contributions are valued.
    • Initiatives in place which promote a diverse and inclusive culture and healthy work life balance include hybrid working, Sport & Social Clubs and Diversity and Inclusion networks.
    • As an employee of SMBC, you have access to a host of both useful and exciting benefit offerings.
    • Hybrid and flexible working.
    • Competitive paid leave days.
    • Benefits to support your physical wellbeing, including private medical insurance.
    • Various policies to support your mental wellbeing, including a robust behavioural health network with counselling and coaching services.
    • Access a wide range of learning and development opportunities and career progression opportunities.
    • Ambitious remuneration package.

    This text has been machine translated. Show original

    Topics that you deal with on the job

    Job Locations

    • Location Frankfurt

      Hessen

      Germany

    This is your employer

    Sumitomo Mitsui Banking Corporation

    Sumitomo Mitsui Banking Corporation

    The Sumitomo Mitsui Banking Corporation is a prominent Japanese bank headquartered in Tokyo. It is part of the Sumitomo Mitsui Financial Group and provides a wide range of banking and financial services. The bank has locations in Germany, including Frankfurt am Main and Düsseldorf.

    Description

  • Company Type
    Established Company
  • Working Model
    Hybrid, Onsite
  • Industry
    Banking, Finance, Insurance
  • Logo Sumitomo Mitsui Banking Corporation

    IT Risk Manager - Assistant Vice President

    Salary
    64.000 to 96.000€ Gross/Year
    Location
    Frankfurt
    Working Model
    Hybrid, Onsite
    Diversity
    Open for all genders
    English Only
    English only required

    More Jobs