Manager - Operations Risk Manager - EUS
Standard Chartered Bank
Chennai, India, Asia
5d ago

About Standard Chartered

We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.

To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.

We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation.

This in turn helps us to provide better support to our broad client base. The Role Responsibilities

Strategy

  • Responsible for providing support , facilitation and operating a control environment for people, process and technology that enables the domain to reduce operational and cyber security risk to a level within the Group’s risk appetite while satisfying control objectives defined in relevant Group policies and external regulations.
  • The role will partner closely Other Enterprise Technology Domains, T&I Risk & Controls, CISO, Group Operational Risk and Group Internal Audit.
  • The role will be required to manage all aspects of initiatives emanating from same for this domain. Additional responsibilities include Proactive Controls Assessment, Issue Management, Audit and Regulatory Inspection Facilitation and other related tasks.

  • The exceptional candidate will also endeavour to understand the larger business context within with T&I operates and advocate for technical solutions that help the business meet its strategic objectives.
  • Business

  • This role is within the Enterprise Technology Risk & Control End User Services (EUS). The role will collaborate with all other related teams to execute and complete the work required to deliver the risk and control related deliverables and / ask owned by the End User Services Domain.
  • This role will report to the Lead, Unit Operations

  • Manager End User Services. Primary role is supporting and managing risk throughout multiple services and operations domain within EUS / Enterprise Technology and T&I.
  • Within T&I Risk and Control Operations Risk Management for End User Services Works closely with Service Heads, Service / Operation Leads and Process Owners within (EUS) and possibly outside the Domain (Within Enterprise Technology or beyond) Interactions with other Service Heads and Operation Risk Managers (ORMs) in other Domains (Cyber Security Services, Security Technology Services, ITSM, Platform and Cloud Services, Core Infrastructure Services) Works closely with Second Line (Group Operation Risk, Office of CISRO) for advice and guidance and steering with regards to group initiatives, risk identification, assessment, risk response, risk closure, risk monitoring and reporting.

    Process Governance team for process onboarding or refresh

    Processes

  • Collaborate and Work with Domain Owners and Services and Operation Leads to : Manages of all risk & control related issues / projects / Deliverables Provide advice and guidelines around risk remediation work Provide support , facilitation around control design from Risk identification to Assessment and closure Ensure management of issues are updated accurately, completely and timely via strategic platforms like CRISP , EORP , I-TRACK etc Act as the Go to person for the domain for any Risk consultation Conducts bi-weekly meetings to actively review, discuss key open issues and issues due for closure within the next 90 days.
  • Supports Audit Lifecycles for identified domain by initiation to audit closure : Understanding the scope and timelines of the audit Ensure domains are sufficiently prepared for upcoming audits Understand the gaps of the domains, controls to mitigate the risk, longer term remediation plans.
  • Responsible for working with the nominated leads to ensure all related evidences are provided to GIA timely and in quality to prevent iteration asks.

    Work with Domains to review and publish MCAPs as per the agreed dates.

  • Support BAU activities, like Control Adequacy Reviews, RCSA , Cyber Penetration testing and any RFI from regulators or internal groups.
  • These may include : Work with the team to enable control sample testing (CST) to be conducted on key control to attest the control operating effectiveness (COE).

    Review trend analysis of exceptions and identify systemic failures. Identify material exceptions and escalate

  • Support UORM’s plan to drive thematic risk and control review aligning to the domain’s objectives, audit themes and key risk areas.
  • These may include : Conducting sessions to assess and provide reviews on new and in-flight projects Support and track all material risks arising from the reviews and remediation action to reduce the risk for the Domain assigned.

    Risk Management

  • This role is responsible for identifying, assessing, managing and governing risk through the application of the ICS RTF, ORTF and with consideration given to industry standards and best practices.
  • Acts as the Go to person from a Risk perspective for the respective domains assigned. Provide support and guidance on control design to Process Owner, Domain Heads.

    Ensure timely updates or escalations are made in case of material risk being identified. Provide ongoing education and support around Risk management by conducting training session or mini one to one meeting to provide staff awareness on risk, compliance, audit support and remediation To provide and ensure that issues updates are updated accurately and timely via the respective agreed platforms.

    Ensure that UORM or EUS MT is kept aware of the key risk, control & audit issue of the Domain through periodical risk forum and reporting Support and provides in management report on risk, compliance audit or remediation to MT, Risk Forum Ensure that all management information is produced in line with the defined schedule and quality and should support management decision and action Ensure integrity of source and the processing of data to deliver accurate representation in management information

    Governance

  • As a delegate of the UORM, advise on the design of key controls, key control indicator (KCI) and key risk indicators (KRI).
  • Monitor and report on KCI and KRI as per metric defined.

  • Review ongoing review to ensure the adequacy and effectiveness of policies, standards, guidelines, process. Identify any material gaps, advice on control improvement.
  • Provides accurate inputs, updates and escalation(if any) to support governance and reporting of issues via the ET Risk forum or any management updates as and when required.
  • Regulatory & Business Conduct

  • Display exemplary conduct and live by the Group’s Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank.
  • This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
  • Key Stakeholders

  • Key stakeholders include EUS MT (End User Services Management Team), End Users Services Service and Operations leads, T&I R&C, GOR, CISO and Enterprise Technology - UORMs and ORMs.
  • In addition, the role will be required to liaison with the broader community of technologists within T&I to help advocate the mission of the domain.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form