U

Manager-IT Risk & Compliance

Ujjivan Small Finance Bank · Bengaluru, Karnataka, India

~₹20L (est.)5–10 yrs experiencefull_timePosted 4w ago
Apply now →

Job description

**JOB TITLE :**Manager-IT Risk and Compliance **DEPARTMENT:** Information Technology **LOCATION :**Bengaluru (HO) **SUB-DEPARTMENT:** IT Governance & PMO **TYPE OF POSITION :** Full-Time **REPORTS TO :** SM- Risk & Compliance **ROLE PURPOSE & OBJECTIVE** 1. Partner with key business stakeholders and oversee the identification, assessment and reporting of risks and controls, including risks associated with new or modified products, services, distribution channels, regulations and/or third-party operations. 2. Responsible for evaluating the efficacy of controls and continuously improving upon its basis inputs from the User department. 3. Responsible for strategizing and executing project delivery plans to improve the efficiency of Risk & Compliance. **KEY DUTIES & RESPONSIBILITIES OF THE ROLE** 1. **Business/ Financials** 1. Initiation & Planning-Engage with the Risk & Compliance team - Document clearly the inherent risks of all the new projects before proposing them to the relevant committees. - Promote user satisfaction and ensure projects are delivered in scope and on time by managing inherent risks. - Interface with third parties as well Risk & compliance team and project teams about new and ongoing engagements. - Liaise with the different stakeholders of the Program across vendors and forge good working relations - Oversee the compliance and risk mitigates of the solutions. 1. Plan, Design, develop, test, and implement risk-assessed projects - Regularly review the progress and quality of the project and ensure that it meets the scope requirements with respect to compliance parameters. - Provide service delivery support and direction to the team for the following activities: project governance, planning, resource/capacity planning, scoping, estimation, implementation, testing, go-live and post-go-live support, considering the compliance to regulatory guidelines at all stages. - Work with vendor and partner teams daily for delivery and quality management aspects. - Oversee the regulatory alignment of the projects and ascertain no deviations. - Follow up on the progress of the implementation and escalate for delays. 1. Information gathering& assessment for projects - Responsible for maintaining and growing stakeholders’ relationships. - Understand Risk & Compliance requirements that impact projects and oversee compliance in all aspects. - Discuss all the information gathered with the Head- of Special Projects to arrive at the key business requirements or change requests. - Review the information gathered to do the first level of risk and compliance feasibility in coordination with the architecture and product teams. 1. **Customer (Both Internal & External)** 1. Management of stakeholder - Oversee compilation of all related metrics and reports, meeting facilitation, and activity management. - Interact with the risk and compliance department, Functional Business Analysts, System Analysts & subject matter experts to understand and implement functional and technical requirements - Provide systems input to specification phase (e.g., effort estimates, high-level delivery plan) based on risk assessment - Partner with Domain Architects, Development Manager, and Security Architect to ensure solution design complies with enterprise design principles, security, and control standards. - Advise and guide teams in handling audit observations and working towards the closure of the same. - Responsible for coordination within the department to respond to all queries raised by auditors and regulators. 1. **Internal Process** 1. Preparation of RCSA - Create complete RCSA new and special projects - Oversee the final IT solutions addresses, IT standards, and business standards, including their documentation, and get it approved by Head- special projects for every new approved project. - Implement control and reporting structures for project monitoring regarding risk and change management based on defined governance methods and standard processes (e.g., risks and issues mitigation and assumptions clearances) - Conduct post-mortem and project closure reviews to identify compliance failures and deficiencies. - Oversee compliance of infrastructure and applications with IT standards, policies, and guidelines, as well as other financial governing bodies - Work with IT Security team to facilitate completion of penetration testing and remediation of findings under Mitigation Plan - Manage ITIL processes like Change, Incident, Problem management etc. - Manage ISS audits and reviews before Go-Live of changes. - Manage technical projects like Migration / Capacity enhancement /Performance Upgrades. - Publish regular MIS updates to all stakeholders on incidents and compliance failures. 1. **Innovation & Learning** - Work on automation and innovation and thus making the process cost-effective. - Create career Development plans and provide necessary risk and compliance training to all concerned. - Actively participate in developing training material and process maps for all new projects. **MINIMUM REQUIREMENTS OF KNOWLEDGE & SKILLS** Educational Qualifications - BE/Bsc./BCA Experience - Must possess a minimum of 5 years of relevant working experience Certifications - If required Functional Skills - Familiarity with enterprise and operational risk frameworks. - Proficiency in Microsoft Office (Excel, PowerPoint, Word) - Previous compliance, AML and Regulatory, business analyst or project management experience preferred - Knowledge and experience of compliance and regulatory environments Behavioral Skills - Excellent communication skills - Ability to manage a team - Ability to deal with escalations - Meticulous and persuasive - Strong process orientation Competencies - Drive for results - Compliance and continuous process improvement. - Analytical thinking - Influencing skills