BAO Support for TW Off-Shore Data Center Outsourcing Oversight
Conduct day to day oversight and monitoring toward the Outsourcing Service Provider (OSP) following the outsourcing oversight program, including service level achievement measuring and service delivery outage following-up, etc.
Communicate the CTL outsourcing related requirements or Taiwan regulation changes to the OSP effectively and efficiently.
Attend OSP’s operational review meeting regularly to keep possessing understandings of OSP’s up-to-date environments and processes.
Conduct on-site walkthrough in Singapore Data Center to observe the physical security, facility management, etc. controls are in place and well maintained.
SG On-Site BAO Support)
Facilitate outsourcing contract annual review / renew process.
Support internal / external audit reviews, management assessments, and regulatory exams regarding outsourcing management audit scope on the ground.
For regulatory exams, translate and communicate the audit requirements from official Chinese language into English to OSP for deliverables preparation, and translate the English deliverables prepared by OSP into official Chinese language for responding properly to regulator auditors / officials.
Coordinate other Tech. departments to conduct annually review and update of outsourcing contract with OSP, including outsourcing scope, service level agreement, etc.
Compose oversight dashboard reports as performance summary to Business Activity Owner (BAO) and present to CTL GCB DC Off-
shore Outsourcing Special Committee periodically.
Escalate outsourcing service incidents once notified according to policy, and keep following-up and reporting the incident resolution progress to relevant parties and BAO.
Periodically review and update the outsourcing oversight program according to previous oversight feedback or recent organization / policy / regulation changes.
Lead and facilitate all offshore DC BAO Support in the business to well comply with the outsourcing oversight program, and making sure compliance to Citi policy and Taiwan regulations.
Identify significant OSP risks and issues, facilitate the OSP management related process improvement and control design and implementation, and update the OSP management procedures accordingly.
BS degree or above major in Computer Science / Information Engineering / Audit related fields
At least 5 years of regulation / compliance, information security, IT control / audit / management related working experiences
Good concept on risk and control regarding information technology related processes
Fluent in speaking, writing, and presenting in Chinese and English
Good in coordination, communication, interpersonal and presentation skills
Can work independently & under extreme pressure to meet deadlines and manage senior management requirements
Flexibility in job rotation of foreign assignment
CISA / CISSP will be a plus.