General Manager - Operational Risk & Compliance - BPO

ORC Framework/Strategy:

- Develop a BPS-Wide ORC Management Framework/ Strategy for the BPS line of business in collaboration with the Enterprise Risk Management team.

- Implement and drive a market leading risk management framework to govern customer engagements addressing contractual, regulatory and operational risk considerations for the BPS engagements

- Partner with Business leads to identify, analyse, assess and mitigate Operational Risks and develop a Control framework suitable to high risk engagements, balancing risk with operational effectiveness

- Develop/manage a robust metrics model to measure and report risk indicators and the associated mitigation actions, leading to a zero-surprises delivery environment

- Develop a robust program to aid in a strategic approach to a comprehensive risk management controls offering for the BPS engagements

Core Competencies:

- Deep insight and knowledge on the Operational Risk Management (including Information security, Transactional Risk Assessment, KYC, AML, BCM, etc.,) and solutions specific to BPO services

- Strong working knowledge of Regulatory Compliance Standards across various Industry Domains, rules and regulations while administering an overall ORC program for the client engagement as the BPS services all line of business (Capital Markets, Payments and Cards, Healthcare, Insurance, Life Science, Media and Entertainment F&A)

- Deep insight of best practice standards such as Basel, ISO 27001, SSAE, SOX, HIPAA, MAS, FSA, is required

- Demonstrates proven expertise and success with implementing Operational Risk Management Practices and strategies, delivering solutions for the engagement emphasized by the customer

- Establishing, communicating, and maintaining a charter for the Risk Management function for the engagement

- Demonstrates proven expertise and success in a role leading and collaborating directly with senior management, delivery, practice development and thought leadership related to Operational Risk Management

- Aligning and integrating the ORC strategy for the engagement with the business goals

- Collaborate with the Enterprise Risk Management team and Corporate Security team and ensure all IT systems, policies and procedures fully comply with security requirements, rules and regulations as laid out in the MSA with the client engagement

- Prepare and implement effective ORC training to team members and associates to ensure building of a Risk Management DNA

- Review Risk Events/ Escalations for the engagement(s) and identify risks and monitor the risk mitigation plans

- Review and monitor the compliance of master service agreements for accounts and advise business team on the requirements

- Engage with external auditors & customer visitors for assessments

Qualifications :

- 10-12 years of experience in Risk Management in the BPS Sector

- Knowledge and working expertise of Basel II, SOX, SSAE, HIPAA, PCI, state and federal guidelines on privacy, Controls and audit requirements; must have led audits either as an auditor (internal/ external) or a provider of service that is audited

- A high level of integrity and trust

- Focused personality, with a demonstrated ability to take initiative, successfully handle and prioritize multiple competing assignments and effectively manage deadlines

- Experience in understanding and deploying risk management frameworks

- Security certifications desired such as CISA, CISSP, CISM, CRISC etc