Job Description:

Job Title- Divisional IS Risk & Control Manager - VP

Location-Pune, India

Role Description:

The Divisional Risk and Control Specialist is responsible for delivering specific aspects of the risk and control strategy for a sub-division. This includes monitoring risk and control activities, risk-based control reporting of key issues, performance, and validation of cyclical activities such as annual control self-assessments. It would also include, control testing, incident research, remediation monitoring and other ad hoc control initiatives and projects. The Divisional Risk and Control Specialist will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects.

One key function within R&C is the information security risk management team lead by the Principal TISO. The team's specific objective is to work with all the Corporate & Investment Bank Technology (CB & IB Tech), Corporate Security Office (CSO), Non-Financial Risk Management (NFRM), Group Audit and all other stakeholders on comprehensive information security implementation and their risk management. The function's primary stakeholders are the CB & IB technology CIOs and their teams.

You will need to understand the information security controls environment and related risks associated with the Bank's Technology Platforms, ongoing/ existing risks, and control related programs, and manage the resolution of these risks as appropriate.

What we'll offer you

As part of our flexible scheme, here are just some of the benefits that you'll enjoy
• Best in class leave policy
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities
• Support CIO teams in devising vulnerability remediation plans - root cause analysis, evaluation of optimal security solution, its implementation/ governance
• Partner with IS/ IT control owners, 2nd line and application teams to effectively implement information security priorities
• Manage senior stakeholder meetings to drive IS risk management related agenda and decision making by effective and pro-active escalation
• Manage management and stakeholder reporting through spreadsheets, tableau reporting, presentations and develop opportunities for automation working with CSO controls owners and reporting team
• Review and influence IS related policies, procedures and Key Operating Documents to provide CBIB Tech perspective
• Support the Principal TISO in managing Divisional TISO engagement and meetings
• Participate in CSO or IS risk related meetings as a delegate to the Principal TISO
• Support the design and implementation of frameworks/ Key Operating Documents to proactively manage IS risks, implementation, and risk remediation
• Provide guidance on IS culture, CSO control implementation processes and remediation approaches.

Your skills and experience
• Prior experience within an IS risk function and/or risk and control role specifically Cyber Security risks viz. application penetration testing, code scanning, vulnerability scans remediation, incident management
• Flexible, pro-active and able to use own an initiative end-to-end
• Strong working knowledge of Microsoft Office apps specifically Excel, Word, PowerPoint
• Ability to manage and drive small automation using excel, MS access or SQL query
• Information security certification such as CISSP/ CISM would be a plus
• Strong analytical skills to evaluate IS risks and control processes from a technical and framework perspective.
• Excellent communication skills, both verbal and written.
• The ability to manage multi-tasks assignments and efficiently prioritize workload with limited supervision and resilient under pressure
• Ability to quickly build a network in the division and among subject matter experts.
• The ability to deal with people at all levels in a global matrix organization.

How we'll support you
• Training and development to help you excel in your career
• Coaching and support from experts in your team
• A culture of continuous learning to aid progression
• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.

We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, ****** orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.

Click to find out more about our diversity and inclusion policy and initiatives