'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Lead - Digital Operational Risk - NBFC
MumbaiJob Title: Lead - Digital Operational Risk - NBFC
Location : Mumbai
Overview: The Head of Digital Operational Risk is responsible for overseeing and managing all aspects of digital operational risk within an organization. This role requires a deep understanding of digital technologies, operational processes, and risk management principles to ensure that digital operations run smoothly while mitigating potential risks.
Key Responsibilities:
- Risk Assessment and Mitigation: Conduct comprehensive risk assessments of digital operations, identifying potential threats and vulnerabilities. Develop and implement strategies to mitigate risks effectively.
- Policy Development: Develop policy for Digital Operational Risk and set up framework and develop SOP's outlining procedures related to digital operational risk management. Ensure that policies are aligned with industry best practices and any applicable regulatory requirements.
- Automation Checks: Carry out integration assessment checks of various BREs, IREs and DREs including accuracy and authenticity checks of Input Variables and logics/thresholds checks
- Change Management: Ensure strict compliance with various SOPs of IT and Digital team for any Change Management requests along with checks regarding approval process and evidences. Strengthen Change Management process of the LTF along with establishment of KRI's to monitor the success of changes. Also carry out post implementation validation checks
- Incident Response: Develop and maintain incident response plans for digital operational disruptions or security breaches. Carry out Root Cause Analysis for such incident and lead the response efforts during incidents, coordinating with relevant stakeholders to minimize impact and ensure timely resolution.
- Vendor Risk Management: Evaluate and manage risks associated with third-party vendors and service providers involved in digital operations. Conduct due diligence assessments and implement risk mitigation measures as necessary.
- Technology Risk Oversight: Work with stakeholders (Business, Credit and IT) to understand business requirements/directives which will be implemented on digital platform. Collaborate with IT and cybersecurity teams to assess and address technology-related risks in digital operations, including data privacy, cybersecurity, and system reliability by carry out BCP checks, Batch Activity checks, breach and simulation attack checks and use of deception technology.
- Team Building & Training: Build and manage a team of Digital OR experts. Provide training and awareness programs to employees on digital operational risk management, promoting a culture of risk awareness and compliance throughout the organization.
- Reporting and Communication: Prepare and present regular reports on digital operational risk metrics, trends, and incidents to senior management and relevant stakeholders. Communicate effectively to raise awareness and drive action on risk-related issues.
- Continuous Improvement: Continuously monitor and evaluate the effectiveness of risk management processes and controls. Identify opportunities for improvement and drive initiatives to enhance the organization's digital operational resilience.
Qualifications:
- Bachelor's degree in a relevant field such as Information Technology, Risk Management, Business Administration, or related disciplines. Advanced degree or professional certifications (e.g., CISA, CISSP, CRISC) preferred.
- Strong understanding of digital technologies, including cloud computing, mobile applications, APIs, and emerging technologies, and their associated risks.
- Proficiency in risk assessment methodologies, regulatory requirements (e.g., GDPR, CCPA, Basel III), and industry standards (e.g., ISO 27001, NIST Cybersecurity Framework).
- Excellent analytical, problem-solving, and decision-making skills, with the ability to translate complex technical concepts into business risks and recommendations.
- Effective leadership and communication skills, with the ability to collaborate across functions and influence stakeholders at all levels of the organization.
- Proven track record of driving change and implementing risk management programs in a dynamic and fast-paced environment.
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}