Senior Analyst- Technology Risk Management
4 weeks ago
Job Description
Job Purpose:
Candidate will work with VP, Head of Service Risk, AO & Digital Platforms to ensure GRC Operational activities are executed as per the agreed timelines in line with the requirements.
Key Accountabilities:
GRC Operations
Implement GRC activity oversight mechanism across the unit and ensure implementation of proper tracking & reporting systems. Track and complete GT BIA/BCP related requirements as per the GBCM timelines. Track, monitor and report GT related periodic UAE regulatory requests & reporting. Actively work with the team to improve GT Risk Remediation activities and implement proper governance mechanisms. Ensure timely completion of IT Risk Operations activities. Manage Data Leakage Prevention (DLP) notifications and implement improvement initiatives to optimize the monitoring policies. Ensure timely remediation of DLP alerts and necessary actions as per the organization policies. Act as a point of contact for GIA for TechGRC audit activities. Implement proper tracking mechanism for Operational Risk Incidents to ensure compliance with GORM policies. Ensure all the GRC systems used by 3 lines of defense are in sync and execute periodic reconciliation activities. Work with the teams to have definitive plans for GIA issues and other key risk items to ensure timely remediation. Identify and implement automation initiatives to improve overall GRC operations. Implement initiatives to improve ways of working with 2nd line & 3rd line functions. Produce timely and accurate MIS for GRC related activities to be covered as part of regular reporting.Technology Risk Management Framework:
Review and provide inputs on IT risk management framework to ensure efficiency and effectiveness of the process performance Review and provide inputs on technology policies, processes & standards to ensure proper coverage of technology controls and metrics Conduct regular reviews and assessments to assess adherence to Group policies and standards for effective implementation within Group Technology (GT) Review and provide input on standard technology risk and control library Implement the cyber risk assessment model and analysis approaches Conduct various assurance initiatives and internal reviews across GT Identify and implement control automation initiatives across GTCloud Management
Participate in conducting due diligence of cloud service providers and ongoing cloud service providers assessments. Assess cloud solutions and determine risk of technology architecture, implementation, and suitability for the organization. Review cloud service providers contracts for compliance with Group policies/processes and ensure relevant controls are considered in the contract with cloud service providers. Assess the risk implications of digital innovation and its impact on technology risk profile of the bank. Provide recommendations to optimize the risks and ensure technology policy and process alignment. Conduct in-depth technical security reviews, risk assessments, and architecture reviews for Cloud based technologies and solutions to ensure alignment with information security policies and technology guidelines.DevOps/DevSecOps/Agile Practices
Provide inputs to development and maintenance of policies, frameworks, methods and standards for the DevOps and agile practices. Ensure risk and security control requirements are considered during the early stages of the development lifecycle Review possible bottlenecks of running the application in production and suggest service improvement plans.Technology Risk Identification & Assessments:
Work with service teams on various risk and control assessments activities and ensure technology risks are managed as per FAB policies and standards. Participate in Project & Change reviews to ensure appropriate treatment of technology risks. Execute periodic risk assessment activities to identify vulnerabilities, threats and control effectiveness. Assess the severity of each risk by assessing likelihood and impact. Work with stakeholders on the residual risk ratings and potential risk exposure.Technology Risk Treatment & Review:
Support development of risk treatment strategies to maintain the bank’s risk posture at the desired level. Ensure proper implementation of risk treatment options such as mitigation, transfer, acceptance etc. and help IT teams in mitigation or acceptance of risks/issues.Technology Risk Monitoring & Reporting:
Review risk items and define Key Risk Indicators (KRI) to monitor high risk areas. Produce periodic risk profile reports and KRI reports to senior management. Work with technology teams to review Major incidents Reports and identify risk/control measures to prevent incident reoccurrence.Job Context:
Key Performance Indicators :
Timely remediation of DLP alerts and associated actions. Participation in relevant service line specific EA community sessions to address the GRC requirements Completion of Risk and Control Self-Assessments as per the agreed schedule Remediation of Technology GRC risk issues as per the established timelines Adequately monitor and supervise remediation of Technology Service Line risk issues as per the agreed timelines Ontime completion of KRI reporting and GORM incident management reporting Completion of regulatory reporting activities as per the timelines Adherence to GRC automation initiatives implementation plans Ontime completion of mandatory trainings and meeting certification requirement Ensure external audit and regulatory certifications are completed on time without non-compliance (PCI DSS, KPMG Statutory Audit, Swift CSF and NESA) Coordinate with service lines to gather RFI’s and management response for GIA (Group Internal Audit’s) on time.
Qualifications
Knowledge & Experience:
8 - 10 years of working experience in IT Security, Risk and Governance practices. Experience with DLP (Data Leakage Prevention) management activities. Knowledge and expertise in virtualization and cloud computing environments (different cloud models and types). Hands on experience in using various Cloud Security best practices such as Cloud Security Alliance (CSA) guidelines and National Institute of Standards and Technology (NIST) guidelines. Demonstrated experience in conducting technical risk assessments for various Cloud platforms. Good understanding of process models and industry standards relating to IT Security, Risk and Governance. Good understanding of security and risk management in financial institutions. Excellent interpersonal skills and good oral and written communication skills. Achievement of industry recognized certifications such as CISSP, CRISC, CCSP, CCSK, CISA etc. Achievement of AWS and Azure cloud certifications is preferable.Skills:
Relationship management Influencing skills Big picture thinker with attention to details Strong change and communication skills Strong analysis skills Strong interpersonal skills-
Senior Analyst, Governance, Risk and Compliance
4 weeks ago
Bengaluru, India Hudson's Bay Company Full timeJob Description Role Summary : Saks Cloud Services is looking for a Senior Analyst GRC to be a key member of the SCS Information Security organization. We seek a dynamic Senior GRC Analyst that enjoys working on security challenges in a collaborative fashion. This person will be responsible for establishing an Information Security governance...
-
Risk Analyst
4 weeks ago
Bengaluru, India ADCI - Karnataka - A66 Full timeThe Risk Analyst is tasked with the creation and provision of actionable risk and threat analytical support to APAC Security and Loss Prevention (S&LP), Amazon operations and other stakeholders within the APAC region in order to identify, assess and report on threats and risks that may adversely affect the safety and security of Amazon associates, locations,...
-
Senior Risk Manager
4 weeks ago
Bengaluru, India ADCI - Karnataka Full timeA Senior Risk Manager, APAC– TERA is a People Manager, responsible for managing a complex and/or expansive sub-region within APAC. The Sr Risk Manager – TERA reports directly to a Senior Risk & Resilience Manager (APAC). They manage a team of Risk Analysts, providing expert direction and guidance on monitoring, collection, and analysis. Their key...
-
AVP - Technology Risk - Emerging Technologies
4 weeks ago
Bengaluru, India Nasdaq Full timeGroup Risk Management (GRM) collaborates with businesses as a trusted advisor, facilitating well-informed decisions that support Nasdaq’s strategic objectives. GRM manages and continues to enhance the Enterprise Risk Management, Internal Control, Business Continuity, Crisis Management, and Corporate Insurance frameworks and programs. These programs...
-
Avp - Technology Risk - Emerging Technologies
4 weeks ago
Bengaluru, Karnataka, India METRIO Full timeGroup Risk Management (GRM) collaborates with businesses as a trusted advisor, facilitating well-informed decisions that support Nasdaq’s strategic objectives. GRM manages and continues to enhance the Enterprise Risk Management, Internal Control, Business Continuity, Crisis Management, and Corporate Insurance frameworks and programs. These programs...
-
Sr. Quantitative Risk Analyst
2 weeks ago
Bengaluru, Karnataka, India Shell Business Operations Full timeMarket Risk: The Market Risk department is a specialized unit in Finance Operations that operates in the Chennai and Manila centers. The team has front line responsibility for risk measurement; deal valuation, exposure reporting and price validation. The department pulls together a range of expert skills that ensure accurate and timely reporting, and allow...
-
Risk Analyst
6 days ago
Bengaluru, India UNO Digital Bank Full timeOverview:Risk Analyst role involves the person to design and develop cutting-edge data-driven solutions by performing Risk analysis and translating business and functional requirements into business performance. This role will require critical thinking and analytical skills to support delivery on strategic initiatives and analytics projects. This will...
-
Risk Analyst
5 days ago
Bengaluru, India UNO Digital Bank Full timeOverview:Risk Analyst role involves the person to design and develop cutting-edge data-driven solutions by performing Risk analysis and translating business and functional requirements into business performance. This role will require critical thinking and analytical skills to support delivery on strategic initiatives and analytics projects. This will...
-
Senior Business Analyst
3 weeks ago
Bengaluru, India AXA Group Full timeSenior Business AnalystGurgaon/Bangalore, IndiaSenior Business Analysts bridge the gap between business and IT by being able to communicate effectively with all stakeholders.The Senior Business Analyst will be responsible for supporting an application or multiple applications within a Delivery Team and her/his core responsibilities include eliciting and...
-
HikeOn Technologies
9 hours ago
Bengaluru, India HikeOn Technologies Pvt. Ltd. Full timeCompany Description: HikeOn Technologies Private Limited, formerly known as Arwizon Digital Private Limited, is a technology company based in Bengaluru. We specialize in guiding your digital journey with creative design, innovative solutions, and technology expertise. Our team is dedicated to providing the best solutions and services to our clients.Role...
-
Senior Business Analyst
4 weeks ago
Bengaluru, India AXA Group Full timeSenior Business Analyst Gurgaon/Bangalore, India Senior Business Analysts bridge the gap between business and IT by being able to communicate effectively with all stakeholders.The Senior Business Analyst will be responsible for supporting an application or multiple applications within a Delivery Team and her/his core responsibilities include eliciting...
-
Sr. Quantitative risk analyst
1 week ago
Bengaluru, India Shell Full time, IndiaJob Family Group:FinanceWorker Type:RegularPosting Start Date:January 18, 2024Business unit:FinanceExperience Level: Experienced ProfessionalsJob Description: Market Risk: The Market Risk department is a specialized unit in Finance Operations that operates in the Chennai and Manila centers. The team has front line responsibility for risk...
-
Senior Risk Analyst
5 days ago
Bengaluru, India PhonePe Full timeAbout PhonePe Group: PhonePe is India’s leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and...
-
Risk Analyst
5 days ago
Bengaluru, India Turno Full timeResponsibilities:Development, Implement and Review of Credit Risk Models & Associated Frameworks in an unsecured rural/semi-urban lending context.Implement & Monitor Credit Risk strategies across the lending life cycle-acquisition, underwriting, cross-sell & collections.Review portfolio on periodic basis across various risk metrics for early warning signals...
-
Senior Business Analyst GSC’s
3 weeks ago
Bengaluru, India HSBC Full timeBusiness: Risk & Compliance TransformationOpen positions: 1Role Title: Senior BusinessAnalyst GSC’sGlobal Career Band: 4Location: Bangalore, Gurgaon, HyderabadWhy join us?Role:Senior Business Analysts shape and lead initiation activities and operating model definition and are at the centre of how Transformation delivers and embeds change working with our...
-
Risk Analyst
5 days ago
Bengaluru, India Turno Full timeResponsibilities:- Development, Implement and Review of Credit Risk Models & Associated Frameworks in an unsecured rural/semi-urban lending context.- Implement & Monitor Credit Risk strategies across the lending life cycle-acquisition, underwriting, cross-sell & collections.- Review portfolio on periodic basis across various risk metrics for early warning...
-
Manager - Risk Analytics
2 weeks ago
Bengaluru, India Cashfree Payments Full timeJob Details: As the Manager of Risk Analytics at Cashfree Payments, you will lead a team of skilled professionals in developing and implementing comprehensive risk management strategies. Leveraging advanced analytics techniques and industry best practices, you will be responsible for safeguarding our platform against fraudulent activities and mitigating...
-
Manager - Risk Analytics
2 weeks ago
Bengaluru, India Cashfree Payments Full timeJob Details: As the Manager of Risk Analytics at Cashfree Payments, you will lead a team of skilled professionals in developing and implementing comprehensive risk management strategies. Leveraging advanced analytics techniques and industry best practices, you will be responsible for safeguarding our platform against fraudulent activities and mitigating...
-
Risk Security Compliance Analyst
2 weeks ago
Bengaluru, India Talent Ocean Full timeClient : MNCPayroll: Third partyBudget : As per marketstandardsExperience : 36 YearsNP : Immediate to April joinersonlyLocation : BangaloreWFORisk Security &Compliance AnalystCertification : ISO 27001 LI CISSP / CISM / CISA IAMConsultant JobResponsibilities: Implementation of ISMSacross the organization working in European time zone driving thetopics and...
-
Market Risk Mv
4 weeks ago
Bengaluru, India Market Risk MV Full timeMarket Risk MV Model Validation, Model Development (Market Risk): 4-8 years of experience. - Proven experience in market risk, risk modeling or model validation. Assess the model's conceptual soundness and methodology. Models - Value at Risk, Counterparty Risk Exposure models, Pricing of plain vanilla and exotic derivatives, FVA, PVA, IPV, Pricing of Credit...
