Python
Tony Chung
Technology Risk Management
Hong Kong
Summary
Tony is a seasoned Technology Risk Management professional with a wealth of expertise in the intricacies of the investment banking sector. As a proactive risk manager, he adeptly secures management buy-in to acknowledge potential threats and provides strategic counsel on bolstering key controls. Over his illustrious 15+ year career, Tony has spearheaded diverse risk reviews encompassing project audits at HKEX, trading process evaluations at Citi, internal audit initiatives and review on corrective actions for regulatory breaches at Citi, compliance with ISO standards on Information Security and business continuity at RBS, and risk advisory coupled with external audit engagements at KPMG. His passion for data analysis is evident through his proficiency in utilizing Python and SQL queries, underscoring his commitment to staying at the forefront of technological advancements in risk management.
Overview
19
19
years of professional experience
3
3
years of post-secondary education
3
3
Certifications
3
3
Languages
Work History
Vice President, Electronic Trading Risk Management
Citibank
09.2021 - Current
- Policy Ownership and Compliance: Maintain a rigorous second line challenge as the policy owner, ensuring strict adherence of eTrading activities to established eTrading Risk Management requirements; Collaborate with various Risk teams (credit risk, market risk, model risk) and the Compliance team to identify and assess risks associated with all eTrading operations.
- Global Collaboration and Policy Development: Provide input and share insights with the global team, offering APAC-specific market and regulatory considerations during the development of the bank-wide eTrading policy.
- Asset Class Leadership: Act as the asset class lead for APAC equity within eTrading Risk Management, guiding and overseeing risk management strategies in this domain.
- Risk Control Self-Assessment (RCSA): Review and challenge the Risk Control Self-Assessment (RCSA) for eTrading activities, ensuring a thorough examination and continual refinement of risk management protocols.
- Regulatory Support: Play a pivotal role in supporting regulatory reviews in the APAC region, aligning eTrading activities with regional regulatory frameworks to foster a culture of compliance excellence.
Vice President, Internal Audit - Institutional Clients Group (Technology)
Citibank
08.2017 - 09.2021
- Strategic Risk Assessment: Assessed risks associated with key issues, engaging in negotiations with senior stakeholders in business management and technology to determine comprehensive risk rankings.
- Complex Risk Scenario Analysis: Analyzed intricate risk scenarios, formulating effective remediation actions to address issues identified through internal reviews and regulatory examinations.
- Policy and Regulatory Oversight: Reviewed newly introduced or enhanced policies, standards, control frameworks, and regulatory requirements. Identified additional risks and controls for comprehensive assessments.
- End-to-End Audits and Reviews: Led and conducted audits and reviews spanning end-to-end processes, evaluating both electronic and manual controls. Ensured compliance with regulatory requirements from trade initiation, execution to settlement.
- Proactive Risk Monitoring: Monitored incidents and tracked regulatory updates related to Equities business, proactively identifying high-risk processes for thematic control reviews.
- Knowledge Transfer and Mentorship: Provided guidance to new joiners and subordinates, imparting knowledge on audit methodologies, and sharing approaches to effectively engage with various stakeholders in different scenarios.
Assistant Vice President, Internal Audit (Technology)
Hong Kong Exchanges & Clearing Limited
02.2015 - 08.2017
- Holistic Risk Management: Identified and meticulously assessed risks and controls across diverse functions within HKEX, ensuring alignment with regulatory requirements and facilitating comprehensive risk mitigation.
- Operational Process Insight: Conducted insightful walkthroughs with operations and technology functions, gaining an in-depth understanding of securities trading, clearing, and settlement processes.
- Business Continuity Assurance: Reviewed and actively participated in business continuity drills, verifying the adequacy of recovery plans. Ensured that core exchange processes and operations adhered to regulatory rulesets without compromising standards.
- Proactive Issue Resolution: Collaborated closely with business and technology functions, engaging in discussions on issues, and actively contributing to the formulation and execution of effective remediation actions.
Audit Manager, Group Internal Audit (Technology)
Standard Chartered bank
07.2014 - 02.2015
- Strategic Audit Collaboration: Conducted collaborative integrated audit reviews alongside business auditors, strategically assessing automated controls governing the internal operations of Global Markets.
- Stakeholder Engagement: Proactively liaised with key stakeholders, fostering a comprehensive understanding of functions. Engaged in evaluating controls, conducting onsite fieldwork, and ensuring alignment with organizational objectives.
- Risk Assessment Expertise: Applied expertise in risk assessment, thoroughly evaluating the risks associated with internal operations. Utilized insights to inform audit strategies and enhance risk mitigation.
- Comprehensive Onsite Fieldwork: Executed thorough onsite fieldwork, ensuring a deep dive into operational dynamics. Gathered insights crucial for shaping a comprehensive audit report.
- Action-Oriented Reporting: Prepared detailed audit reports, outlining findings and recommendations. Worked closely with stakeholders to develop actionable and effective mitigation plans for identified issues.
Senior Assurance Analyst, Corporate Security Services
Royal Bank of Scotland
03.2011 - 07.2014
- Comprehensive Compliance Reviews: Conducted meticulous reviews of self-risk assessments and internal controls for outsourcing activities. Ensured alignment with bank policies, regulatory mandates from HKMA, MAS, and CBRC, as well as industry best practices encompassing ISO 27001 and ISO 23301.
- Stakeholder Training and Advisory: Delivered impactful training sessions and expert advice to key stakeholders across the APAC region. Specialized in bank policies such as Information Security and Business Continuity Management, ensuring a robust understanding of regulatory requirements.
- Dynamic Ad-Hoc Projects: Undertook diverse ad-hoc projects directed by senior management and CBRC. Projects included fraud investigations related to finance and expense management, as well as security measures and controls linked to Lehman Brothers' disputes, showcasing adaptability and problem-solving skills.
Assistant Manager, Risk Advisory Services
KPMG Hong Kong
10.2006 - 03.2011
- Strategic System Audit Leadership: Spearheaded and conducted System Audit & IT Risk Advisory reviews, encompassing critical assessments like SOX attestation, Internal Audit, and Balance Scorecard. Assumed an in-charge role, overseeing engagement details, collaborating with business audit functions, and orchestrating kick-off meetings with clients.
- Holistic Engagement Oversight: Played a pivotal role in planning engagement scope, budget, and approach. Coordinated fieldwork arrangements and conducted business process-level walkthroughs with stakeholders, evaluating IT environments, operations, and system reliance. Identified key IT and operational controls, ensuring a meticulous testing approach agreed upon by clients and the audit team.
- Strategic Recommendations Delivery: Provided insightful recommendations to clients, leveraging a comprehensive understanding of observed issues and their impact on business audits. Demonstrated an ability to assess relevance and offer pertinent suggestions for improvement.
- Liquidation Support and Trade Analysis Expertise: Collaborated with the liquidation team, contributing expertise in determining securities ownership under agreements such as Stock Loan, Repurchase Agreement (Repo), and Novation Agreement across diverse entities within a group.
- Meticulous Account Reconciliation: Executed precise navigation of trading and General Ledger systems for reconciling accounts of various parties. Tracked journal entries impacting trading books, inter-company accounts, nostro accounts, and depot accounts.
- Legal Collaboration and Proactive Problem-Solving: Engaged in discussions with external legal counsellors to understand the booking process within the trading system. Provided valuable insights into implications on securities ownership, showcasing proactive problem-solving skills.
Senior Programmer, IT department
AXA China Region
12.2004 - 10.2006
- Comprehensive Source Code Review and System Enhancement: Conducted thorough source code reviews, system analyses, impact assessments, and technical specifications. Collaborated with Tata Consultancy Services consultants in India to enhance the commission and compensation module of the Agency system, ensuring alignment with project requirements.
- Strategic Project Implementation Planning: Led project implementation planning sessions with major user groups from the Fund Management team. Successfully executed the integration of the wealth management module into the Fund Management system, emphasizing adherence to stringent security and privacy standards.
- Change Management Expertise: Implemented effective change management strategies, overseeing the coordination of application migration processes. Facilitated seamless activities of workgroups, efficiently scheduled tasks, and developed comprehensive migration plans.
Education
Bachelor of Science (Hons) in Information Technology -
The City University of Hong Kong
Hong Kong 04.2001 - 04.2004
Post-graduate Diploma in Professional Accountancy - Accounting
The Chinese University of Hong Kong
Hong KongAccomplishments
- Pioneered the design and successful implementation of the global electronic trading framework, specifically tailored for the APAC region, during my tenure at Citi Risk Management.
- Spearheaded issue validation reviews related to regulatory breaches and audit findings at Citi Internal Audit, playing a pivotal role in expediting closures and enhancing operational robustness.
- Led a critical project review for the Shenzhen-Hong Kong stock connect initiative at HKEX Internal Audit, collaborating closely with the project team to resolve issues and secure regulatory approval for the seamless rollout of the project.
- Recognized for astutely identifying key risks and providing strategic counsel on controls in the realms of Information Security and Business Continuity for third-party services during RBS control reviews.
- Contributed to the success of an Internal Control review mandated by CBIRC (formerly CBRC) on money laundering prevention during my tenure at RBS, demonstrating a commitment to regulatory compliance and risk mitigation.
Certification
Hong Kong Institution of Certified Public Accountant (“HKICPA”)
Resides
Hong Kong
Personal Information
Nationality: Chinese
Software
SQL
Timeline
Vice President, Electronic Trading Risk Management
Citibank
09.2021 - Current
Vice President, Internal Audit - Institutional Clients Group (Technology)
Citibank
08.2017 - 09.2021
Assistant Vice President, Internal Audit (Technology)
Hong Kong Exchanges & Clearing Limited
02.2015 - 08.2017
Audit Manager, Group Internal Audit (Technology)
Standard Chartered bank
07.2014 - 02.2015
Senior Assurance Analyst, Corporate Security Services
Royal Bank of Scotland
03.2011 - 07.2014
Hong Kong Institution of Certified Public Accountant (“HKICPA”)
01-2010
Certified Information Systems Auditor (“CISA”)
01-2010
Certified Information Systems Security Professional (“CISSP”)
01-2009
Assistant Manager, Risk Advisory Services
KPMG Hong Kong
10.2006 - 03.2011
Senior Programmer, IT department
AXA China Region
12.2004 - 10.2006
Bachelor of Science (Hons) in Information Technology -
The City University of Hong Kong
04.2001 - 04.2004
Post-graduate Diploma in Professional Accountancy - Accounting
The Chinese University of Hong Kong
Similar Profiles
CALVIN WUCALVIN WU
Wealth Relationship Manager at CitibankWealth Relationship Manager at Citibank
Maria HernandezMaria Hernandez
KYC Analyst at CitibankKYC Analyst at Citibank
Lisa FowlerLisa Fowler
Associate Fraud Operations Analyst at CitibankAssociate Fraud Operations Analyst at Citibank
Dana ValenzuelaDana Valenzuela
Bank Officer - Compliance Anti Money Laundering at CitibankBank Officer - Compliance Anti Money Laundering at Citibank
Marc YanMarc Yan
Sales Manager at AUB LtdSales Manager at AUB Ltd