JOB SUMMARY The Japan Technology Risk and Controls group is responsible for risk management that includes internal and external audits and regulatory examinations, IT Regulatory assessments, IT internal controls, governance for IT security, system development, computer operation and management reporting. Key responsibilities include, but are not limited to: issue identification, tracking, monitoring and reporting, as well as assisting to create Management Action Plans (MAPs), and tracking these MAPS through issue closure; and assisting with external audits. This position will work closely with other TRC members as well as management across IT, Risk, and Internal Audit. JOB DESCRIPTION The Technology Risk and Controls , Associate will be responsible for a number of critical initiatives, including the following: + Assist with the IT Risk Acceptance and Remediation process + Partner with key stakeholders to understand and document risk or issues, pushing back on a request as needed + Based on the associated details, risk rate these issues + Facilitate the request for risk acceptance or remediation through the approval process + Monitor remediations through completion, escalating any that may not be completed in a timely manner + Reporting: + Assist with the extraction for key data points monthly + Conduct aggregate risk reporting and assess trends over time + Provide regular report tracking issue resolution status + Assess & Monitor the Risk of Third-Party Issues: + Assess the risk associated with any IT issues, whether identified within AIG or IT issues associated with a third party + Monitor the issues through resolution + Provide management reporting + Assist with External Audits + Monitor changes in the IT environment, help to assess their impact on IT controls, and take proactive action + Facilitate collection of IT artefacts to provide the External Auditor and review prior to submission + Monitor MAPs, understanding where there are significant issues, and what can be done to address these issues, escalating as appropriate + Validate MAP closures address the root cause of the issues JOB REQUIREMENTS Experience + 5+ years of experience within technology risk, control, and governance, IT Internal Audit or SOX disciplines in financial industry + Candidate must be Bilingual (Japanese and English) + Bachelor’s degree required + Strong expertise in SOX framework nice to have + Understanding of IT Audit principles and best practices + Experience analyzing risk throughout the development life cycle of business applications. + Demonstrated knowledge of internal and external controls required in a regulated insurance company environment including Japanese Personal Information Protection Act. + Ability to oversee multiple processes, action plans and key stakeholders simultaneously + Experience raising awareness of issues to key stakeholders across technology Core Skills + Demonstrate robust analytical skills + Proven track record of drawing conclusions, making decisions, and using data to solve problems + Ability to define solutions from ambiguous scenarios + Maintain excellent interpersonal and oral/written communication skills + Active listener + Ability to drive change through influence + Excellent negotiation, collaboration, facilitation, and coordination + Negotiate prioritization and treatment of risk issues based on level of risk 職務概要 日本のテクノロジーリスク＆コントロールは、内部および外部監査や規制当局による審査、IT規制評価、IT内部統制、ITセキュリティのガバナンス、システム開発、システム運用、管理報告などを含むリスク管理を担当しています。 主な職務内容は、課題の特定・追跡・監視・報告、マネジメントアクションプラン（MAP）の作成支援および課題解決までのMAPの進捗管理、外部監査対応のサポートなど多岐にわたります。本ポジションは、他のTRCメンバーやIT、リスク、内部監査部門のマネジメントと密接に連携して業務を遂行します。 職務内容 テクノロジーリスク＆コントロール アソシエイトは、以下を含む複数の重要なイニシアチブを担当します。 + ITリスクアクセプタンスおよび是正プロセスのサポート + 主要な関係者と連携し、リスクや課題を理解・文書化し、必要に応じてITリスクや是正に対してアドバイスを提供 + 関連情報に基づき、課題のリスク評価を実施 + リスクアクセプタンスまたは是正のリクエストを取りまとめ、承認プロセスを進める + 是正策の完了まで進捗を監視し、期限内に完了しない場合はエスカレーション + レポーティング + 毎月、ITリスクに関する主要なデータをトラッキング・抽出しKRIレポートを作成 + リスクのレポート作成および傾向分析 + 課題への是正対応状況の定期的なレポート + サードパーティ課題リスクの評価・監視 + AIG内で特定されたIT課題やサードパーティに関連するIT課題のリスク評価 + 課題解決までの進捗の監視 + マネジメント向けレポートの提供 + 外部監査対応のサポート + IT環境の変更を監視し、IT統制への影響を評価、積極的な対応を実施 + 外部監査法人へのIT関連資料・エビデンスの収集・提出前レビューのサポート + MAPの進捗監視、重大な課題や対応策の把握、必要に応じてエスカレーション + MAPのクローズが課題の根本原因に対応していることの検証 応募要件 経験 + 金融業界におけるテクノロジーリスク、コントロール、ガバナンス、IT内部監査またはSOX分野で5年以上の経験 + 日本語・英語 + 学士号 + SOXフレームワークの高度な知識があれば尚可 + IT監査の原則およびベストプラクティスの理解 + 業務アプリケーションの開発ライフサイクル全体にわたるリスク分析経験 + 保険会社で求められる内部・外部統制（日本の個人情報保護法を含む）に関する知識 + 複数のプロセス、アクションプラン、主要関係者を同時に管理する能力 + テクノロジー部門全体の主要関係者に課題認識を促す経験 コアスキル + 高度な分析力 + 結論を導き意思決定を行い、データを活用して課題を解決した実績 + 不明確な状況から解決策を定義する能力 + 優れた対人・口頭／書面コミュニケーション能力 + 傾聴力 + 影響力を活用した変革推進力 + 優れた交渉力、協働力、ファシリテーション力、調整力 + リスクレベルに応じた課題の優先順位付け・対応方法の交渉 At AIG, we value in-person collaboration as a vital part of our culture, which is why we ask our team members to be primarily in the office. This approach helps us work together effectively and create a supportive, connected environment for our team and clients alike. Enjoy benefits that take care of what matters At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family. Reimagining insurance to make a bigger difference to the world American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become. Welcome to a culture of inclusion We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The talent of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations. AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories. AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to candidatecare@aig.com . Functional Area: IT - Information Technology AIG Business Partners KK