Information Technology (IT) & Digital Transformation Risk Manager at I&M Bank Rwanda (Plc)

Information Technology (IT) & Digital Transformation Risk Manager

I&M Bank Rwanda (Plc)

  • Position(s): 1
  • Deadline: 2026-06-15
  • 16

Information Technology (IT) & Digital Transformation Risk Manager

Reports to: Chief Risk Officer

Department: RISK

Job Purpose

The Information Technology and Digital Transformation Risk Manager will support the Bank’s Risk Management function by providing independent oversight, challenge, and advice on information and communication technology (ICT) risks, digital transformation initiatives, and change activities across the Bank.

The role ensures that risks arising from new products and services, new technologies, and change management processes are appropriately identified, assessed, monitored, and reported in line with the Bank’s risk appetite, regulatory requirements, and international best practice, while supporting safe, controlled innovation and transformation.

Key Responsibilities

  • Review and assess ICT risk exposures relating to infrastructure, applications, networks, systems availability, data security, and system integrations.

  • Evaluate the adequacy and effectiveness of technology controls implemented by first-line teams.

  • Monitor cybersecurity risk trends, including vulnerabilities, incidents, and remediation progress.

  • Review ICT resilience, disaster recovery, and business continuity arrangements.

  • Track and report on ICT risk issues, control gaps, and remediation actions.

  • Provide risk oversight for digital transformation initiatives, including mobile banking, online banking, digital lending, cloud platforms, APIs, automation, data analytics, and fintech integrations.

  • Review and challenge risk assessments for new products and services prior to approval and launch.

  • Assess risks associated with the adoption of new and emerging technologies, including cloud computing, open banking technologies, automation tools, and digital platforms.

  • Advise management on risk implications of digital strategies, innovation initiatives, and technology roadmaps.

  • Provide risk oversight of change management processes related to technology, digital initiatives, and operational transformation.

  • Review risk assessments for system upgrades, migrations, process re-engineering, and organizational changes impacting ICT and digital services.

  • Assess the effectiveness of controls governing change planning, testing, approvals, implementation, and post-implementation reviews.

  • Monitor risks arising from large-scale or complex change programs and escalate material issues through governance structures.

  • Review ICT-related third-party and outsourcing risk assessments, including fintech partners and technology service providers.

  • Monitor risks associated with vendor dependency, data security, service resilience, and concentration.

  • Review control assurance reports and risk mitigation actions for critical ICT third parties.

  • Escalate material third-party risk issues through appropriate governance forums.

  • Contribute to the development and ongoing enhancement of ICT, digital transformation, and change risk management frameworks, policies, and standards.

  • Monitor compliance with applicable regulatory requirements and internal risk management frameworks.

  • Prepare independent risk reports, dashboards, and key risk indicators for management and governance committees.

  • Support regulatory examinations, internal audits, and risk reviews relating to ICT, digital, and change risks.

  • Act as a trusted risk advisor to technology, digital, product, and transformation teams.

  • Provide guidance on risk management expectations for new products, new technologies, and change initiatives.

  • Promote awareness of ICT, digital, and change-related risks across the Bank.

  • Support continuous improvement through lessons learned from incidents, audits, and control reviews

Knowledge, Skills and Experience

  • Bachelor’s degree in information technology, Computer Science, Information Systems, or a related discipline.

  • CRISC, CISA, CISM, CISSP, or equivalent professional certifications.

  • A master’s degree in a relevant field will be an added advantage.

  • Minimum of 3-5 years’ experience in ICT risk management, technology risk, information security, IT audit, operational risk, or change risk within a financial services environment.

  • Experience supporting new product approvals, digital banking platforms, fintech partnerships, or technology-enabled transformation initiatives.

  • Strong understanding of ICT, digital, and change risk regulatory expectations within the banking sector.

  • Strong analytical and risk assessment skills.

  • Ability to assess risks associated with innovation, new products, and change programmes.

  • Knowledge of ICT governance and security frameworks (e.g. COBIT, NIST, ISO 27001, ITIL).

  • Strong judgement and ability to provide effective challenge.

  • Excellent written and verbal communication skills.

  • High levels of integrity, objectivity, and attention to detail.

  • Ability to work collaboratively across multiple functions.

PS: The email subject should contain the title “Interested candidates are invited to submit the following:

  • A detailed CV outlining relevant experience

  • A cover letter outlining their suitability for the role

Please send your application to hr.recruitment@imbank.co.rw

PS: The email subject should contain the title” (IT) & Digital Transformation Risk Manager ”

Application Deadline: 15th June 2026

Apply Now
Kigalistore WhatsApp group
Share this Job: