Overview
Number of years of experience expected: 5-12 years.
– Areas of experience preferred: Operational risk, incident management, third party risks, business continuity planning, loss data, fraud risk, internal controls, SOP, and policies, (Broad Consulting experience in BFSI domain only.
– Educational qualification expected: CA, MBA, any other relevant master’s program.
– Preferable additional certifications: Project Management, ORM certifications
– Preferred geography of previous work experience: India, Middle East, APAC
– Language requirements: Ability to write and speak fluently in English.
– Application experience: Exposure to GRC tools such as MetricStream, SAP GRC, etc. is beneficial.
Key responsibility areas:
– Lead and manage independent projects across a wide range of operational risk management areas such as internal control assessments, developing SOPs and policies, third part risk management, incident management and reporting, loss data, and business continuity for financial institutions.
– Preparation of detailed project plan for timely delivery
– Review, verify and validate existing frameworks, policies, procedures and risk and control matrices for theoretical soundness, testing design and identification of control weaknesses, ensuring ongoing monitoring as well as contribute to the firm-wide risk and control self-assessment (RCSA) exercise.
– Identify changes to the risk profile and consider its impact on the heat map for risk rating.
– Meet business needs and regulatory expectations for assessing key aspects of each area under review: assessment approach, the underlying assumptions, and associated limitations with respect to heat map requirements for risk rating and control scores, development of the framework, etc.
– Demonstrate independence in planning and stakeholder engagement, testing design and execution, results interpretation and presentation, and the production of documentation strong enough to evidence a sound challenge to both internal and external parties.
– Proactive engagements with the client’s process owners and risk department to ensure timely completion and finalization projects.
– Provide regular updates on project execution and quality reviews.
– Identify and emphasize on findings that warrant discussions with Risk Management Committees
– Demonstrating value provided to the client by way of developing and presenting risk dashboards and risk analytics on key items.
– The truly global scope of operational risk means that this role will involve working with an incredibly broad group of stakeholders from every part of the firm, investigating operational risk and governance standards and undertaking detailed risk and control self-assessment (RCSA), defining KRIs along with associated thresholds, undertaking KRI monitoring, along with establishing and linking it to the loss data and incident reporting workflows.
– Deep understanding of global and Indian frameworks, methodologies and standards on process risk and controls, along with associated compliance requirements
– Very strong understanding of financial services industry, businesses, regulators, and their roles
– Responsible for preparation of proposals, pitch decks, presenting in client meetings and thought leadership documents across various ORM related areas.