Vice President - Risk - Bank

This VP is responsible for oversight of Information Security, Operational Risk, Product & Process Risk Management and Business Continuity. This also includes Senior Stakeholder Management, Committee Reporting and External Audit Management.

Main Responsibilities :

- Strategic Support the delivery of timely process improvement initiatives for the department. To come up with ideas and initiatives for process improvement and to improve employee experience.

- Monitor key risk indicators to ensure minimal impact due to incidents and no financial loss/implication for the organization

- Develop and maintain strong stakeholder management with key stakeholders both within internal and externally.

- Build effective relationships with internal & external customers to ensure a high quality of service is provided.

- Head the department and team on all risk related aspects. Deal with staff with right compassionate service attitude and deal with stakeholders with fairness

Overall :

- Establish and review of Risk policy and procedure framework for global captive/capability centre

- Manage operational risk/resilience of captive operations

- Review and ensure development, effectiveness and implementation of Business Continuity Plan and Business Impact Analysis

- Monitor key risk indicators, Incident management, Operational Risk Management, RCSA Management and External Audit for captive unit

- Assist Senior Management in framing crucial/critical decisions by providing necessary inputs, analysis and opinion

- Ensure deliverables and support to Senior Management on various Risk management reporting and committee meetings

- Conduct Business continuity risk management related activities including Coordination for Annual drills, reviewing Manuals for Business continuity

- Monitor Information security risk management - track monitor and report information security incidents and solutions/methods to mitigate the same

- Oversee the development and implementation of IS risk management function

- Liaising with Auditors, Regulatory authorities, Consultants as and when required on integrated risk matters

- Establishing and modifying Risk Policies and Procedures

- Operational Risk Stress testing and necessary/applicable reporting

- Collaborate with local SMEs to ensure capturing of important risk events/issues and report to Senior

- Management in a timely manner. Important risk events/issues include but not limited to the following: Serious Operation Incident, Information Leakage Incident, Cyber Attack Incident,

- Compliance Incident, Serious Litigation, Crisis Event - Risk-related organizational changes, Regulatory changes, Deterioration in Unit's portfolio

- Centrally monitor / manage the status of new product / business, such as condition, direction or due date, after its approval, periodic Assessment of Existing Products and Businesses

- To carry out any other assignment given by Management/Supervisors from time to time

- Ensure necessary reportings to Management, Internal and External Regulators and authorities

- Provide Risk Updates at organization level to the Board of Directors/Executive Committee

- Third Party Risk Management and adherence to Global laws not restricted to US

- Risk Assessments for Business Units

- Any other areas related to Risk/Governance of GCC.

Candidate Profile :

Skills & Knowledge :

(e.g. Capability, Traits required for the role)

- Work experience in Risk Management

- Excellent Written and verbal communication skill

- Good presentation skills

- Analytical and critical thinking

- Strong interpersonal skills

- Strong organizational skills and a problem-solving attitude.

- Good knowhow of banking industry enterprise-wide risk procedures such as BCM and information security, etc.

- Good at written communication skills, able to convey results of analysis in crisp manner to top management

- Expert skills with Microsoft Suite (Word, Excel, PowerPoint, Project, SharePoint and MS Teams) are required for better data representation in graphical formats to visually convey key messages to top management.

Education & Professional Qualifications Graduate in any discipline :

Length & Type of Experience :

- Requires a minimum 12 - 16 years demonstrated knowledge and direct work experience in leading Enterprise Risk, Operations Risk and Information Security Risk

- Experience working with captives, external vendors, Third Party Risk Management is required.

- Demonstrated skills in the areas of priority setting, problem solving, negotiation, and conflict management are required.

- Ability to effectively partner with key stakeholders and cross functional groups to mitigate risk, remediate issues and drive accountability

- Must be a self-starter, have the ability to work independently, and adapt in a dynamic environment