Head - Digital Risk Operations - BFS

- Partner with the IT Team to implement appropriate System Management tools to provide management of all IT infrastructures.

- Partner with IT to complete user acceptance testing (UAT) is conducted on all projects, all defects opened during testing are logged in Quality Center and fixed prior to release or a deployment plan in place for a future fix.

- Ensure any defects that cannot be resolved will be communicated and documented with proper business knowledge and sign off before release.

- Partner with the Business team to identify high risk functionality and business expectations for testing.

- Digital Risk Officer would need to have a wide range and deep understanding of digital data, emerging digital threats, and how fraud occurs in a digital environment.

- The Digital Crisis plan should address escalation issues and contingency planning, and address ownership areas during a cyber or digital crisis affecting data, fraud monetary loss, and other key issues.

- Digital Risk Officer should also ensure that any lessons learned, and business intelligence is shared across the organization, so each line of business, product owner or channel owner can adjust their own dedicated risk strategies as digital risk evolves.

- Since payments are moving more and more in real time around the world, this knowledge base would include all aspects of the business including Retail, Commercial, etc. Track and gather data for measuring operational trends and identifying areas for improvement.

- Manage risks that may affect release scope, schedule, and quality.

- Provide appropriate status reports to stakeholders on a regular basis.

- Proactively set standards and test key controls

- Identify and deliver improvements to current processes, including education and awareness needs to the business

- Manage timely and effective action plans to mitigate channel exposures and control weaknesses in the Data Privacy, Records Management taking ownership for relevant inputs and outputs from Group Risk Committee

- Facilitate the identification and management of regulatory responsibilities

- Representing and contributing to relevant Group Information Security governance forums

- Identify the key channel exposures and control weaknesses and ensure they are fully understood and managed appropriately across all internal and external stakeholders

- Actively develop and maintain relationships with a wide range of contacts (Business Division, Group and external) to obtain/exchange information, identify best practices and where appropriate, respond to changes in the internal and external business environment.