'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Vice President - Enterprise Risk Management - CA/IIM/ISB/FMS/MDI
Bangalore VP-Enterprise Risk Management
Enterprise Risk Management - VP/Reporting To CAO Ideation of the Role
- This role is a global role of Enterprise risk, Compliance and Business Continuity. Responsible for the development, implementation and oversight of the global ERM program including to identify, measure, monitor, and improve the risk posture of the company.
- Vision of the Role Role Spectrum: A. Set up the ERM function encompassing Enterprise risk, Compliance and Business Continuity. B. Establish and communicate ERM vision across the organization C. Define risk governance structure with clear roles and responsibilities
- Improve risk information needed to support strategic decision making throughout the organization.
- Understand risks and interrelationships to help drive performance, value, and brand.
- Consistently identify and assess risk. Objectives and Responsibilities of ERM VP/ Sr. VP Leadership/Supervisory Role:
- Set up the overall risk appetite for the company and drive the measurement of risks against the risk appetite.
- Integrate & Align strategic objectives and organizational Risk management policies in respect to strategic management process.
- Facilitate sharing of risk management best practice across the organization
- Develop monitoring methods to highlight performance of ERM Framework.
- Monitor the application and effectiveness of risk management processes
- Ensure that a comprehensive and continuous risk identification process is in place
- Identify Risk Ownership. Strategy: Instrumental in designing the ERM Strategy leading to:
- Integrate Risk management with strategic management process.
- Develop and communicate ERM policies.
- Establish, communicate, and facilitate use of appropriate ERM methodologies, tools & techniques
- Establish and follow-up an appropriate framework to facilitate collection and analysis of data and information.
- Implement appropriate risk reporting to the Audit Committee and CEO.
- Align companies risk management framework to COSO / ISO31000 risk management standards Developing risk registers conducting RCSAs, defining KRIs
- Drive automation/ process efficiency in managing risk registers and monitoring KPIs identified to help business understand early signals and act. Collaboration:
- Plays a highly collaborative role, building solid cross-functional relationships with all business units and management across the business spectrum.
- Partners with other operations, clients, L&D and HR function to determine Risk program priorities, roll-out plans, set program deadlines, ROI and analytics.
- Collaborates with departmental heads and managers, to identify areas that requiring training and to develop program requirements unique to each department in respect to ERM.
- Experience working closely with the Technology team to secure information, create, and implement strategies to minimize the variety of risks that could threaten the firm s key information. - Track the risk metric no. of risks identified risks materialized predict risk severity Reporting & Analytics:
- Ensure effective data governance, reporting and measures ERM program delivery quality, which ensures continuous improvement, maintenance, and adjustment in program delivery.
- Facilitate periodic enterprise wide risk assessment.
- Ensure Comprehensive Mitigation Action Planning. - Monitor and report the progress of Mitigation Action Plans.
- Ensure that cultural issues with respect to Risk Management are effectively managed. - Monitor the Top entity level risks.
- Periodically review risk policies, procedures, reporting templates and framework to ensure everything is up to date.
- Operationalize the risk register into measurable business KPIs. Put in place digitisation plans for tracking such measurable KPIs.
- Track such KPIs on a monthly basis and flash the same to the leadership for needful attention and action.
- Annual refresh of the risk registers across all business units. Monitors and analyses risks within the company's business units and reports action planning on these risks to the Board.
- Ensures the organization's risk management policies and strategies are in compliance with applicable regulations, rating agency standards, and strategic imperatives of the organization. Knowledge:
- Good knowledge of infosec principles such as ISO 27001, NIST, COBIT, etc. - Knowledge of GDPR requirements and experience in related projects.
- Ownership of the Enterprise Risk Management architecture for the company.
- Experience in Disaster recovery.
- Be part of key business reviews and understand overall business risk landscape. Note: The above statements are intended to indicate the general nature and level of work being performed by employees within this classification. They are not intended to be an exhaustive list of all responsibilities, duties and skills required of employees assigned to this job. Employees in this job may perform other duties as assigned.
Experience & Competencies:
- CA / MBA- Premier Institute, or related field
- 15+ years' experience in relevant experience in risk management and operations, with at least 10 years in a leadership/management capacity
- Enterprise Risk Management Certified Professional (ERMCP) or equivalent.
- Thorough understanding of ISO 31000 and COSO Framework.
- Set up a quarterly/ monthly review to identify new and emerging risks with the key business leaders and create an effective review cadence.
- Oversees or monitors all operational risk management activities of the organization.
- Help build a risk-based audit program.
- Candidate must be from Internal Audit + ERM Background.
- ISO qualification is Mandatory.
- CBCP (business continuity) is an added advantage.
- Previous experience in auditing, risk assessment and finance are plus.
- Ability to write / revise policies and guidelines and maintain Risk Register.
- Possesses refined communication skills and advanced speaking capabilities.
- Be empathic, enthusiastic, and passionate about working in ERM culture.
- Big4 experience preferred.
- Good grasp of the COBIT fundamentals which underpin IT audits.
- Exposure to SOX-related IT reviews, including automated controls, IT general controls reviews, and baselining system-generated reports
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}