Associate - Operational Risk - Global Finance India

This is an Individual Contributor Role within the Global Finance India (GFI) Risk Management team. The incumbent would primarily work with multiple business teams on the Operational Risk agenda, Business Contingency Planning (BCP) & Information Risk agenda. In addition, s/he will need to ensure that effective controls are in place across various finance functions in GFI.

The responsibilities of the Risk Management group consists of the following:

Operations Risk Management:

- Sarbanes Oxley (SOX) compliance:

- Partnering with on-shore stakeholders

- Scoping of SOX controls to be tested

- Testing of controls as per corporate timelines

- Testing documentation and archival

- Updating of testing results in the Corporate ORM tool

- Supporting QA reviews and audit of SOX controls

- Semi-annual Risk and Control Self Assessments (RCSAs)

- Process Risk Reviews and Review of Internal Controls

- Track & Publish Risk Metrics & Scorecards

- Ensuring compliance with various control policies (Consecutive Leave Policy, Record Retention Policy, LRS policy, Funds Transfer Policy etc.)

- Projects and Initiatives on Risk & Control Awareness

- Review & remediation of high-risk manual processes

- Follow-up on open issues & exceptions for remediation & closure

- Drive general awareness and provide trainings around risk & controls

- Coordinate Audits

Business Contingency Planning (BCP) & Crisis Management:

- Business Impact Analysis (i.e. Criticality Assessment)

- Business Contingency Planning (BCP) and documentation

- Annual review & sign-off of BCP strategy & BCP documents

- BCP testing (in-country & out-of-country)

- Track & Publish BCP scorecards/metrics

- Work on remediation of BCP issues

- Provide support during crisis incidents to ensure minimum business impact

- Ensure timely completion of all projects & initiatives on BCP

Information Risk Management (IRM):

- Controls on User Developed Tools (UDTs) including Spreadsheet Controls

- User / Infrastructure level IT controls

- IT Risk Scorecard / metrics to track open IT risk items

- Follow-up with users for remediation of open IT risk items

- Drive general awareness around IT Risk & Security

- Participate in meetings related to technology projects to cover risk & control points

Education

CA/ MBA with 3-9 years of post-qualification experience in Operational Risk, Business Contingency Planning (BCP) and/or Information Risk.

Experience

Experience in SOX testing, Internal Audits, Process Risk Reviews, Business Contingency Planning (BCP), Information Risk Management (IRM), etc. In-depth knowledge of SOX compliance is a key requirement.

Skill sets

- Should be able to work independently as an Individual Contributor

- Strong control mindset with an aptitude to identify & assess operational risk issues

- Keen eye for details and ability to identify control gaps. Good auditing and review skills

- Sound communication and negotiating skills along with Excellent Client Partnership skills

- Reasonably good Excel and Power-point skills

- Able to grasp/learn new concepts, policies and procedures quickly

- Should be a self-starter and carry a proactive & positive approach

- Ability to multi-task and capable of delivering on multiple priorities

- Ability to understand the risk impacts of technology change projects

- Ability to work under pressure and make accurate decisions in stressful situations