
Operational Risk Officer- ICT Controls Testing
13 hours ago
Position Purpose
RISK Operational Risk Management (RISK ORM), created early 2021 to oversee operational risks within the mandate of the RISK function, is organised, under the responsibility of the Group Chief Operational Risk Officer (Group CORO), around 3 Poles: RISK ORM Framework, RISK ORM Technology & Transversal Risks and RISK ORM Network.
Under the authority of the Poles Manager, RISK ORM Network is made up of all the Operational Risk Officers (OROs) acting as the second line of defence (LoD2) within the Groups operational entities (Poles, Business Lines, Functions, Transversal Activities).
The below requirement is for Operational Risk Officer- ICT Controls Testing role which part of the Common ICT LoD2 Controls Execution Platform (CICEP) under Group RISK ORM Network team. The candidate will be part of The Banks 2nd line of defense function, and they will be responsible for testing the deployment, and effectiveness of the IT and Cyber controls globally.
The position is based in India Solutions Pvt. Ltd. (ISPL), Mumbai and reports to the Head of CICEP (India CoE), plus functionally to Group Head of ICT Controls Testing.
Key success of the CICEP relies on building trusted partnerships with stakeholders and particularly with the ORM Network community and globally, with all entities of the Group.
Responsibilities
Direct Responsibilities
Perform the independent testing of ICT controls (ITGC controls testing) to determine the design effectiveness, and operating effectiveness of IT and Cyber controls.
Contribute to the industrialization and automation of RISK ORM ICT control testing services by development of methodologies / tools for the achievement of assignments.
Draft high-quality reports containing the assessors opinion on the ICT control gaps, and recommendations for improvement, post completion of an assignment.
Review and assist with the evaluation of control deficiencies and provide practical recommendations for remediation.
Identify areas of improvement for ICT control testing and assist with the enhancement of the methodologies / tools for carrying out the ICT controls testing assignments.
Ensure completion of the testing and adherence to the internal timelines.
Provide IT and cyber risk management consultancy (specific to ICT controls) to business and IT stakeholders.
Work in collaboration with other stakeholders from business and RISK ORM teams to contribute towards influencing the ICT risk culture of The Bank.
Improve the effectiveness of the Internal Controls programme by reviewing the control environment, risk assessment process, control activities, information and communication and monitoring activities
Contributing Responsibilities
Collaboration at the India CoE level with Head of India CoE, including but not limited to the CoE level reporting requirements
Effectively contribute to the CoE, RISK India Hub and ISPL on Group mandates, Objectives and priorities
Help and contribute to build the CoE as a positive place to work
Technical & Behavioral Competencies
SKILLS, EXPERIENCE AND COMPETENCIES
Skills Required
- 3-6 years of experience in IT audit / ITGC controls testing / technical assessments, preferably in the areas of Cyber and Technology domains in a financial institution.
- Must be able to interface and coordinate work efficiently, and effectively with business partners.
- Excellent analytical skills being able to come to a thoughtful and business focused conclusion quickly.
- Good communication, listening and influencing skills, including ability to articulate complex issues and incorporate feedback.
- Ability to manage their workload independently to meet their targets, and priorities set in conjunction with management.
- Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate.
- Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done.
- Being rigorous and thorough especially when logging and tracking issues through to conclusion.
- Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business.
- Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate.
- Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework.
- Team player focus on the success of the whole team. Working well both with others, as well as individually.
- Ability to work under strict timelines and at pressure situations to manage the delivery.
- Open to work under global time zones as required for workshops or stakeholder discussions.
Skills Preferred
- Has the proven ability to think outside of the box, challenge industry norms and adapt quickly to evolving requirements.
- Is self-aware, anticipates problems, adapts and meets them head on.
- Strong stakeholder management, relationship building, influencing, facilitating and presenting skills.
- Is solutions focused measures their output on whether issues, problems or challenges are resolved as a criteria for success.
Competencies:
- University degree (technical), and/or certification such as ISO27001, CISA.
- Professional qualifications/trainings relevant to technology and/or cyber risk (e.g. change management, outsourcing, vulnerability management, cloud security etc.).
Conduct:
- Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure.
Specific Qualifications (if required)
University degree (technical), and/or certification on Risk Management
Skills Referential
Behavioural Skills: (Please select up to 4 skills)
Attention to detail / rigor
Ability to deliver / Results driven
Ability to synthetize / simplify
Ability to collaborate / Teamwork
Transversal Skills:
Ability to anticipate business / strategic evolution
Ability to develop and adapt a process
Ability to set up relevant performance indicators
Analytical Ability
Ability to develop and leverage networks
Education Level:
Bachelor Degree or equivalent
Other/Specific Qualifications (if required)
- Professional qualifications/trainings relevant to Information Security, Risk Management (ISO 27001, ISO 3100, CISA) preferred
-
Operational Risk Officer
1 week ago
Mumbai, Maharashtra, India BNP Paribas Full time ₹ 15,00,000 - ₹ 30,00,000 per yearPosition Purpose RISK Operational Risk Management (RISK ORM), created early 2021 to oversee operational risks within the mandate of the RISK function, is organised, under the responsibility of the Group Chief Operational Risk Officer (Group CORO), around 3 Poles: RISK ORM Framework, RISK ORM Technology Transversal Risks and RISK ORM Network.Under the...
-
BRM Control Testing
4 weeks ago
Mumbai, Maharashtra, India Currenex State Street Trust Company Full timeJob DescriptionBusiness Risk Management - Control Testing OfficerJob DescriptionThe Investment Services Testing team performs operational effectiveness testing of internal controls on behalf of the First Line of Defence for the Investment Services business to support Business Risk Management in assessing and continuously improving the bank's control...
-
Divisional Risk And Control Senior Analyst
2 weeks ago
Mumbai, Maharashtra, India Rangam Infotech Full timeTitle Divisional Risk and Control AnalystLocation MumbaiNote Specific mandatory skills Understanding of control Experience range 5-8 years Open to considering fresher candidates Yes No No Open to considering relocation non-local candidates Yes No Yes Contract duration 8 months Shift timings 10 00 AM - 7 00 PM Number of days work from office ...
-
Divisional Risk and Control Specialist
3 weeks ago
Mumbai, Maharashtra, India Deutsche Bank Full timeJob DescriptionDivisional Risk and Control Specialist - AVPPosition OverviewJob Title: Divisional Risk and Control Specialist - AVPLocation: Mumbai, IndiaRole DescriptionThe Divisional Control Office (DCO) / Business Control Unit (BCU) is a 1st Line of Defence (1st LoD) function within the front office created during the implementation of the Three Line of...
-
Project Manager Ict
3 weeks ago
Mumbai, Maharashtra, India Arcadis Full timeOverview Arcadis IBI is looking for a Programme ICT Manager for one its recent Programme Management Project in Maharashtra Responsibilities -Advise and assist the Client in developing ICT program for the project - Prepare strategic and operational plans for the Information Communications Technology ICT initiatives required for Client and to ensure that...
-
Divisional Risk and Control Senior Analyst, AVP
12 hours ago
Mumbai, Maharashtra, India Deutsche Bank Full time ₹ 20,00,000 - ₹ 25,00,000 per yearRole DescriptionYou will be joining the Control Assurance and Risk Identification Team in the Investment Banks Divisional Controls Office (DCO). DCO is responsible for the global control environment across IB and is closely aligned with the business, providing central oversight for Front Office (FO) control framework activities, including design,...
-
Divisional Risk and Control Specialist
2 days ago
Mumbai, Maharashtra, India Deutsche Bank Full time ₹ 15,00,000 - ₹ 20,00,000 per yearThe Business Control Unit (BCU) is a 1st Line of Defence (1st LoD) function within the front office created during the implementation of the Three Line of Defence (3LoD) programme. Its primary objective is to support the front office in executing Non-Financial Risk framework for its business line.The primary responsibility of the Risk Analyst within the BCU...
-
FIC Risk and Control Assessment
5 days ago
Mumbai, Maharashtra, India Deutsche Bank Full time ₹ 1,20,000 - ₹ 3,00,000 per yearAbout The Role : Job Title: FIC Risk and Control Assessment (RCA) LocationMumbai, India Corporate TitleAVP Role Description The Business Control Unit (BCU) is a 1st Line of Defence (1st LoD) function within the front office created during the implementation of the Three Line of Defence (3LoD) programme. Its primary objective is to support the front...
-
Coe Control Testing Associate
4 weeks ago
Mumbai, Maharashtra, India JPMorgan Chase Full timeAre you looking for an exciting opportunity to join a dynamic and growing team in a fast paced and challenging area This is a unique opportunity for you to work in our team to partner with the Business to provide a comprehensive viewAs a Control Testing Associate in the newly established Testing CoE you will be part of the team that bring together skilled...
-
Vice President
3 weeks ago
Mumbai, Maharashtra, India BNP Paribas CIB Full timeAbout BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union's leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and...