IT Security Analyst Senior - Enterprise Risk Management
Fis
Mumbai , Maharashtra, India
6d ago

Position Type : Full time

Type Of Hire :

Experienced (relevant combo of work and education)

Education Desired : Bachelor's Degree

Travel Percentage :

IT Security Analyst Senior (RISC) Mumbai

Are you curious, motivated, and forward-thinking? At FIS you’ll have the opportunity to work on some of the most challenging and relevant issues in financial services and technology.

Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun.

About the team

  • Part of FIS Enterprise Risk Management as 2nd line of defense under RISC (Risk, InfoSec & Compliance)
  • Risk Officer engagement model to enable effective risk management as a competitive advantage.
  • Risk Officers work in cooperation with the business to define risk appetite statements and create guidelines for operating within the defined sector, vertical, industry or geography.
  • Championing implementation of the ISO 31000 framework and partnering with the business to establish risk appetite
  • Responsible for establishing singular RISC (Risk, InfoSec & Compliance) voice on key deals and initiatives supporting assessment and decisioning of risk / reward scenarios
  • What you will be doing

  • Implementing the FIS enterprise risk management framework to ensure the business has robust risk management arrangements and adequate internal and external controls.
  • Embed the risk framework effectively into the culture and day to day operations of the organization.

  • Continuously enhancing the Risk Maturity of the business by determining and overseeing an appropriate risk agenda for the business to discharge its responsibilities under the FIS enterprise risk management framework.
  • Oversee the identification, measurement, management and reporting of all Operational Risk exposures within the business in accordance with the Operational Risk framework and policies.

  • The individual must formulate and implement an Operational Risk & Control Management Framework that is appropriate for the business ensuring industry / regulatory adherence and continual development.
  • The Framework will include leading / maintaining a formal Risk and Control Self-Assessment (RCSA) for business leaders to quantify, manage and mitigate key risks within their businesses.
  • Ensure the Risk & Control Framework is aligned with FIS’s Enterprise Risk Management Framework and governance structure.

    Facilitate Risk and Control deep dives’ to ascertain root cause’ and to understand drivers of risk incidents.

  • Performs risk assessments related to the Data Protection, Supplier Management and Enterprise Risk Management programs as well as other consulting projects throughout various risk disciplines while identifying potential issues, control gaps and potential process efficiencies.
  • Enhancing the Risk Culture by becoming a trusted and valued partner of business and providing challenge and oversight as to strategy, business activities and the control environment.
  • Monitor & report Sustainability across all KRI and appropriate business and operational metrics and escalate as appropriate

  • Oversee the implementation of Operational Risk best practices, in particular risk expertise to Business leaders as they develop plans and strategies to achieve their objectives.
  • Collaborate with senior leadership and the business unit(s) to develop preventive strategies consistent with specified internal controls of the company and best practices.

  • Assist in the production of management information and key risk indicators on operational risk to ensure the executive team are fully aware of all material operational risks taken and receive an independent view on the adequacy of their management.
  • Embed a risk culture within the business units.

  • Ensure that regular and ad-hoc reporting is provided to senior management that adequately reflects the risk profile of the business
  • Drive best practices across business areas and regions to ensure consistency & adherence to policies. Ensure Risk and Control, and Governance requirements of each Participant contract are understood and executed.
  • Assist the business in ensuring Regulatory Compliance.

  • Support in ISO 27001, PCI Standards Audits (PCI-DSS), Incident Management
  • Facilitate internal and external audit requests.
  • What you bring :

  • 5+yrs of experience in Enterprise Risk Management and Risk Governance.
  • Experience in Providing support for risk priorities, exercise independent risk oversight and challenge, and proactively manage risk for business and corporate domains.
  • Experience in performing risk assessments related to the Data Protection, Supplier Management and Enterprise Risk Management programs as well as other consulting projects throughout various risk disciplines while identifying potential issues, control gaps and potential process efficiencies.
  • What we offer you

  • A competitive salary and benefits
  • A variety of career development tools, resources and opportunities
  • A fantastic range of benefits designed to help support your lifestyle and wellbeing
  • A broad range of professional education and personal development opportunities
  • A work environment built on collaboration, flexibility and respect
  • A fantastic range of benefits including private medical cover, dental cover and travel insurance
  • Privacy Statement

    FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients.

    For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form