Manager, Risk Management

At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking.At Capital One India, we are at the cutting edge of solving fundamental business problems using advanced data methodologies, statistics, and machine learning algorithms. We analyze data to derive valuable business insights, make decisions, and develop innovative and patentable products.As a Manager, you will have responsibilities associated with Capital One India’s Risk Management team, helping to ensure a timely and accurate month-end risk reporting, in addition you will help consult on initiatives, programs, and projects to raise their game in Information Security and Risk Management. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. Ensure all strategic initiative coming your away is delivered in a timely mannerResponsibilitiesAs part of the India Risk Management team ensure timely completion of all activities, adequate cross-training and backup, completion of requests from India Leadership, and strategic planning for the Risk Management function.Manage PSP - Governance (Policies, Standards & Procedures) by reviewing and ensuring compliance with the Enterprise Policy Program standard, reporting on the creation of new documents, renewals/expiry of existing documents, and Standard Adherence Assessments conducted by CPO (Corporate Policy Office), maintaining a repository of India-wide documents, influencing updates to policies and standards to enhance risk management activities, and maintaining Risk Management PSPs and SOPs while drafting new documents as the team's scope of work expands.Oversee Corporate Insurance by renewing and maintaining various policies like Worker’s Compensation (WC), Property Insurance, Directors and Officers Liability (D&O), and Commercial General Liability (CGL), while also coordinating with the insurance broker to facilitate claimsManage Physical Records by facilitating the storage and transport of physical records via a third-party and maintaining an Inventory Index to track data and retention requirements by lawOversee Internal Audit by finalizing the vendor to conduct the annual audit, drafting the scope and IA calendar, coordinating with internal teams to facilitate the audit, assisting in the timely closure of observations/recommendations, and reporting the status and details of observations to the Leadership Team (LT)Prepare risk reports at the India site level within the Enterprise Risk Management framework, including key topics such as phishing drill reports to the Leadership Team (LT), bi-annual Official Records (non-HR GDrive) certification and reporting to the Risk Head, quarterly Sensitive Data Assessments and reporting to the Risk Head, monthly Hard Disk Drive (HDD) remediation reports to the LT, and monthly Iron Mountain document storage reports to file managers and respective LTs Constantly work with US Risk Office and Cyber teams to expand the scope of Risk Reporting Prepare Assurance Reports, including monthly Controls execution reports to owners and relevant LTs, and coordinating with Capital One US and India support teams to report on the status of IA TPM, ABAC, BCP testing, Standard Adherence Assessments, and Statutory AuditsWork closely with LT to maintain artefacts (like Vision, Roadmap, etc) in the internal portal for Capital One internal Lean - Six Sigma based frameworkPresent Risk and Assurance reports to the Leadership Team (LT) in the Monthly Business Review (MBR), chaired by the India head, US Risk Office head, and US Legal head, as well as in the Quarterly Risk, Legal & Tech Committee, chaired by the India head, US Risk Office head, US Legal head, and US Tech HeadIdeate and implement Risk Management framework across Risk Taxonomy and refresh framework based on evolving business needs/ risksPartner with other Risk Management functions across the company and cross functional teams to conduct Process Level Assessments Maintain relationships with key stakeholders to ensure timely delivery of commitmentBasic QualificationsBachelor’s degree in engineering & MBA10-14 years of overall experience Atleast 5 years of experience in Enterprise Risk ManagementGood knowledge on Enterprise Risk Management framework and implementation, 3 Lines of Defense framework & handling/ facilitating Internal AuditGood communication skills - Verbal, written and presentationPreferred qualificationsMajority of the experience in risk managementExperience in Banking or consulting preferred Enterprise Risk Management - Level 2 qualified (by IRM - Institute of Risk Management)COSO framework, ISO 31000 and ISO 27001