We are seeking an experienced Operational Risk Manager to play a critical role in safeguarding our operations and technology environment, with a strong focus on operational risk, business continuity and third‑party risk in the fast‑evolving digital asset space. You will design and implement robust non‑financial risk frameworks, oversee key controls, and work closely with Technology, Operations, Legal, Compliance and Business teams to build a resilient, compliant and scalable platform.

What You’ll Do

Operational, BCP & Third‑Party Risk

• Design, implement and enhance the operational risk framework covering processes, systems and people across the organisation.
• Lead risk assessments and control reviews on core operations, including payment/transaction flows, reconciliations, client servicing and back‑office activities.
• Own Business Continuity Planning (BCP) and Disaster Recovery (DR) from a second‑line perspective: coordinate BCP reviews, scenario testing and post‑exercise remediation.
• Establish and oversee third‑party risk management, including due diligence, onboarding assessments, ongoing monitoring and exit plans for key vendors and outsourcing partners.
• Lead incident management and root‑cause analysis for operational and technology events, driving corrective and preventive actions and capturing lessons learned.
• Develop and monitor KRIs and dashboards to provide senior management with real‑time visibility of operational, BCP and vendor risks.

AML/CFT, Fraud & Regulatory Oversight

• Oversee and enhance AML/CFT programs in line with HKMA and other applicable requirements.
• Support transaction monitoring, suspicious activity detection and regulatory reporting (STRs/SARs).
• Work with first‑line teams on KYC/CDD, customer risk profiling and sanctions screening for digital asset clients.
• Provide risk challenge and guidance on potential fraud risk areas (e.g. account takeover, payment fraud, insider abuse), working with relevant teams to design and strengthen controls.
• Support interactions with regulators and auditors, including inspections, thematic reviews and licensing‑related work.

Collaboration, Governance & Continuous Improvement

• Partner with Technology, Product, Operations, Legal and Compliance to embed operational, technology, BCP, third‑party and fraud risk considerations into product and process design.
• Contribute to risk and compliance committees, ensuring timely escalation and clear documentation of key decisions and actions.
• Lead training and awareness programs to build a strong risk culture across the organisation.
• Stay ahead of emerging risks and regulatory developments in digital assets and Fintech, and drive process digitisation and automation using RegTech and data‑driven approaches.

What We’re Looking For

Must‑Have

• Minimum 10 years in operational risk, technology risk, BCP, third‑party risk, AML/CFT and/or IT audit within banking, Fintech or digital asset firms.
• Strong understanding of HKMA framework and AML standards, with hands‑on experience implementing or enhancing operational risk frameworks.
• Demonstrated experience in BCP/DR planning and testing, and in managing or overseeing critical third‑party / outsourcing arrangements.
• Good understanding of technology infrastructure, cybersecurity, cloud operations and vendor risk management.
• Exposure to transaction monitoring, KYC/CDD, sanctions screening and related regulatory reporting.
• Excellent stakeholder management skills with the ability to influence senior leaders and collaborate across functions.
• Professional certifications such as CAMS, FRM, PRM, CRISC, CISA or equivalent are highly preferred.
• Fluency in English and Mandarin/Cantonese (written and spoken).

Nice‑to‑Have

• Experience with digital asset exchanges, stablecoins, custody platforms or blockchain‑based products.
• Prior involvement in fraud risk management, financial crime control design or investigations.
• Familiarity with RegTech tools, data analytics and automation for risk and compliance workflows.
• Experience in regulatory licensing applications or inspections (e.g. SFC VASP).
• Hands‑on skills in data analysis, risk modelling or reporting tools (e.g. SQL, Python, Tableau, Power BI).

General Culture and Benefits of RD Technologies

• Exciting and collaborative startup environment.
• Give your best while having fun and grow as a person.
• A flat structure: your ideas get heard by the right people very quickly.
• Creating your own profile in the startup ecosystem.
• Casual dress code.
• Free coffee, tea, drinks and snacks daily.
• In-house gym facilities.
• Regular and fun company activities.
• Comprehensive Medical & Life insurance
• Other leaves in addition to annual leaves, e.g. marriage leave, birthday leave, compassionate leave.

Data collected would be used for recruitment purposes only. Applicants who do not hear from us may consider their application unsuccessful and their data will be destroyed within 24 months of receipt.