Role Overview

Senior leadership role in APAC Technology Risk responsible for the strategic direction and execution of the firm’s First Line of Defence (1LoD) cybersecurity and technology risk management program across the Asia-Pacific region which includes 8 regulatory jurisdictions, including China, India, Japan, Hong Kong, Singapore, Korea, Taiwan and Australia. We are seeing a strategic, forward-looking senior risk leader with deep domain expertise across cyber and technology risk management, regulatory compliance, incident/crisis response and emerging technologies. The candidate will be recognized for cultivating trust, facilitating collaboration, driving consensus and adept at translating complex risk landscapes into actionable, commercially viable strategies and actions.

Key Responsibilities:

• Risk Strategy & ERMF: Align regional technology risk initiatives with the firm’s Enterprise Risk Management Framework (ERMF) and the Global CISO strategy, insuring we continue to maintain a robust "Three Lines of defence" model.
• First Line of Defence (1LoD) Leadership: Drive the implementation and execution of technology risk controls across all engineering & related functions in the region.
• Regional Governance: Providing oversight for the identification and mitigation of technology-related risks across all regional hubs.
• Regulatory Engagement: Prepare, participate and lead informal and formal interactions with our regulators in region. Articulate our policies, standards and practices when required.
• Architecture Reviews: Ability to review complex systems (new and legacy) and identify risk and control gaps that required uplift and remediation.
• Incident Management: Oversee regional response to cyber incidents, ensuring effective coordination between Global Cyber defence and Intelligence (GCDI) and local business units.
• Third-Party Risk: Manage technology risk assessments for regional vendors and cloud service providers, with a specific focus on data onshoring and localization requirements in restricted jurisdictions.
• Stakeholder Management: Advise and influence regional and global executive leadership on technology risk programs, priorities, including real and emerging risks .
• People Leadership: Lead, manage, develop, motivate and supervise regional tech risk teams across reginal offices.

Qualifications & Experience:

• Experience: 15+ years of experience in Technology Risk, Cybersecurity, or Operational Risk within the financial services sector.
• 1LoD Expertise: Proven track record of working within the First Line of defence, with hands-on experience in designing and operating technical controls rather than purely providing second-line oversight.
• Leadership: Experience leading, multi-disciplinary teams and programs in a global, matrixed environment.
• Technical Proficiency: Strong grasp of cloud security, application security, and data architecture, specifically within the context of APAC-specific technology stacks, including China.
• Education: Bachelor’s or master’s degree in computer science, Engineering, or a related quantitative field.
• Certifications: Relevant professional certifications such as CISM, CISSP, or CRISC are highly preferred.

ABOUT GOLDMAN SACHS

At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.

We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.

We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html

© The Goldman Sachs Group, Inc., 2025. All rights reserved.

Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.