37 Enterprise Risk Jobs

About the Role: Grade Level (for internal use): 11 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role reports to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact Lead efforts in defining and documenting a comprehensive Issue Management Process document/ methodology Lead efforts to centralize control gaps/ issues in GRC tool Lead efforts in logging, tracking, monitoring and remediation of control gaps/ issues Coordinate with key stakeholders to ensure the issues are clearly articulated, mapped to appropriate risk category, mitigating controls are identified through proper risk assessment Lead efforts in periodic reporting of issues to senior Management Conduct data analysis to demonstrate trends of progress made in issue remediation by various technology processes Conduct meetings to discuss issues and risk remediation plan Lead efforts in risk exception and risk acceptance process Monitor risk acceptance scenarios and bring it to appropriate committees for reporting Prepare PowerPoint presentations to provide comprehensive and holistic issue management process What Were Looking For Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5+ years of experience in a large global organization leading the technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ----------------------------------------------------------- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ----------------------------------------------------------- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.2 - Middle Professional Tier II (EEO Job Group)

Job Summary: This role involves driving strategic initiatives, managing business transformations, and leveraging industry expertise to create value-driven solutions. Roles & Responsibilities: Develop and execute technology transformation strategies, oversee implementation projects, and optimize digital capabilities for business efficiency. You would be expected to: Facilitate alignment between business and IT, and across the democratized IT landscape Engage business and IT stakeholders, building and maintaining relationships Adapt to changing business and operating models Analyze trends and disruptions, and assess their impact on targeted business outcomes Tell stories to visualize the future state and trigger long-term planning Support various operating models such as project-centric and product-centric Communicate the value of enterprise architecture, and its portfolio of services Drive the evolution of the EA teams services and operating model Coach and mentor other architects, product owners/managers and business stakeholders to instill architectural thinking Scope of Activities: As an Enterprise Architect, you will demonstrate competencies across four key dimensions: Support Formulation of Strategy and Guide Execution Lead the analysis of business and operating models, market trends and the technology industry to determine their potential impact on the enterprise's business strategy, direction, and architecture. Provide perspective on the readiness of the organization to change and innovate through scenario planning techniques, and supports formulation of business strategy. Uses planning-driven, design-driven and learning-driven approaches to construct future- and current-state business models. Connects Strategy to Execution Facilitate business and IT alignment, connecting strategy to execution, through a collaborative, supportive and consultative manner, driving the organization's digital business strategies and balancing innovation and growth. Translate and guide execution of business strategy to achieve the organization's targeted business outcomes. Build and Maintain Relationships Build the EA value proposition, contributing to positioning the EA practice as an internal management consultancy, offering services and skills to support the development and execution of business strategy. Develop a portfolio of consulting services, designed to meet business and stakeholder needs, and delivers in an agile and time-boxed way. Determine the relationship between people, processes, information, technology and other components of the enterprise operating model. Enable value-based messaging and manage cross-functional relationships Provide consultative advice, adapted to stakeholder context, to business leaders and organizational stakeholders who seek actionable recommendations to make investment decisions about the next business and operating model of their organization, using technology to make that change happen. Lead interaction with business leaders, product managers and product owners in a business-driven conversation over the risks and implications of the product decision to the line of business, business unit and greater enterprise. Orchestrate the Delivery of Business Outcomes Position the EA practice at the intersection of business and IT. Ensure that the EA practice is designed and enabled to formulate, translate and execute business strategy. Work with business architects and business leaders to identify key drivers and targeted business outcomes to derive useful business context. Bring alignment across business and IT Lead analysis of the business future-state capabilities and future (and current) IT environment to detect critical gaps and opportunities and recommend solutions for improvement to drive the business towards its targeted outcomes. Identify organizational requirements for the resources, structure and cultural changes necessary to support the enterprise architecture. Work with the CIO and IT leaders to find the right EA organizational design to drive business-outcomes. Ensure that the EA organizational design process leads to a more efficient and effective business and IT operating model, significantly improved results and EA resources empowered and committed to the integration of business and IT. Support Solution Design and Delivery Maintain the alignment, integration and coordination of architecture activities across different programs, projects and products as they evolve over time. Present gap analyses and/or IT investment roadmaps that reflect the status of the existing IT landscape, namely, its ability to contribute to future-state business capabilities around ecosystems and digital platforms. Lead analysis of the IT environment to detect critical deficiencies and recommend solutions for improvement. Lead the development of an implementation plan for the enterprise architecture based on business requirements and the varying IT strategies for project-driven or product-driven delivery teams. Support solution design and delivery Develop and apply minimal viable architectures, which can include a set of standards, reference architecture patterns, principles and guardrails, through the EA governance model, which is informed by the business strategy and corporate governance. Facilitate a collaborative relationship across architecture community, product management and product delivery teams by providing freedom-in-a-box for decision making, with the minimal viable architecture forming the boundaries of the box. Collaborate with delivery teams to ensure consistency with the enterprise architecture, as well as to leverage shared technologies, tools and processes that impact speed to value and time to market. Collaborate with infrastructure teams to ensure consistency with the enterprise architecture, as well as to identify when it is necessary to modify the enterprise architecture. Professional & Technical Skills: Relevant experience in the required domain. Strong analytical, problem-solving, and communication skills. Ability to work in a fast-paced, dynamic environment.

Role Details Work with Functions on risk identification, assessment, and mitigation Helps prepare and executes continuous monitoring and stress testing programs and analyze data Works on automation/AI initiatives Prepare management review dashboards and keep them updated Skills Required Should have good attention for details, good interpersonal, oral, and written communication skills with ability to communicate with all levels of management. Ability to work in high pressure environments and deliver high quality work Aptitude and ability to identify risks, perform analytics and provide solutions Any exposure to risk management is an added advantage. Good knowledge of excel, power BI, MS Office Should be self-motivated and willingness to learn.

Overview Omnicom Global Solutions is an integral part of Omnicom Group, a leading global marketing and corporate communications company. Omnicom’s branded networks and numerous specialty firms provide advertising, strategic media planning and buying, digital and interactive marketing, direct and promotional marketing, public relations, and other specialty communications services to over 5,000 clients in more than 70 countries. OGS India plays a critical role for our group companies and global agencies by providing stellar products, solutions, and services across Creative Services, Technology, Marketing Science (Data & Analytics), Advanced Analytics, Market Research, Business Support Services, Media Services, and Project Management. With over 4000 talented colleagues in India, we are growing rapidly and are looking for professionals like you to help build the next chapter of our journey. Responsibilities Conduct cybersecurity and privacy risk assessments in alignment with internal frameworks and regulatory requirements. Engage with risk owners and business stakeholders to manage and mitigate identified risks. Develop and present risk reports to senior leaders and governance forums. Advise on cybersecurity architecture and leading practices to strengthen the enterprise risk posture. Assist global agency teams and networks with compliance to cybersecurity regulations and requirements. Monitor the global threat landscape and identify emerging risks; implement proactive control measures. Contribute to the maintenance and effectiveness of the Information Security Management System (ISMS). Participate in risk governance, compliance programs, and strategic risk reduction initiatives. Qualifications 3–5 years of experience in information risk management, cybersecurity, or GRC domains. Proficiency in risk assessment methodologies, threat modelling, and risk mitigation practices. Strong knowledge of cybersecurity frameworks and standards (e.g., ISO 27001, NIST, CIS, GDPR). Experience preparing risk reports and dashboards for leadership audiences. Excellent collaboration and stakeholder engagement skills across global teams. Analytical mindset with the ability to evaluate and prioritize risks effectively. Preferred Qualifications Industry certifications such as CRISC, CISM, CISSP, ISO 27001 Lead Implementer, or similar. Exposure to cloud security risk and compliance monitoring tools. Experience working within enterprise ISMS or regulatory compliance programs .

Job Title: Risk and Compliance Manager Management Level: Manager / Consultant Location: Gurgaon, Mumbai, Bangalore, Pune, Hyderabad Experience: 5–12 Years Education: MBA (Finance) from a Tier-1 B-school, or CA/CMA, CFA Certifications (Preferred): FRM, PRM, CFA About the Role Join a Top-Tier Strategy & Consulting Practice , where you will support global clients in building innovative, forward-looking risk management strategies as a Risk and Compliance Manager , where you will support global clients in building innovative, forward-looking risk management strategies. In this role, you will drive consulting projects, partner with deal teams, and help shape the future of risk and compliance across diverse sectors. Key Responsibilities Lead the design and delivery of risk strategy, transformation programs, business cases, and technology solutions in areas such as: Enterprise risk management Portfolio and liquidity risk Market and credit risk modeling Fraud and financial crime risk compliance Advise clients across geographies on risk maturity assessments and regulatory frameworks. Build and manage a pipeline of consulting engagements and business development opportunities. Author thought leadership and whitepapers on emerging risk trends. Collaborate closely with global teams to ensure consistent, high-quality delivery across markets. Contribute to practice development through mentorship, capability building, and knowledge sharing. Must-Have Skills Deep expertise in risk modeling , with hands-on experience in PD, LGD, EAD methodologies. Demonstrated experience in designing and executing credit, market, or liquidity risk frameworks. Proven ability to lead consulting projects or internal risk transformation programs. Strong business acumen with a consultative mindset. Excellent written, verbal, and presentation skills. Familiarity with risk technologies and platforms like Murex, Calypso, SAP HANA, PEGA, JIRA, Bloomberg, etc. Good-to-Have Skills Exposure to areas such as: Credit underwriting frameworks, collections, and counterparty risk FRTB, IBOR transition, stress testing, and capital calculations Risk register development, RCSA, KRI/KCI, fraud analytics Third-party risk consulting and operational risk management Knowledge of regulatory environments in key global markets Experience working with global clients in distributed delivery models Why Join Us Work with G2000 clients on strategic, high-impact projects Collaborate globally with leaders across strategy, tech, and industry Access world-class learning and development opportunities Champion responsible business , inclusion, and equality in everything you do Be part of a culture that supports growth, innovation, and purpose-driven work

Role 1 - Enterprise Risk Manager 5 years of non-financial, operational or enterprise risk management experience (within banks or fintech companies). Demonstrated stakeholder management skills. Exhibit a comprehensive understanding of investors' perspectives on the anticipated risk landscape and effectively implement strategies to manage and mitigate these risks within the organization. Strong awareness and understanding of the regulatory environment applicable to digital platforms in the geographies that the firm operates in Strong understanding of the regulatory and compliance framework that are applicable to banks and experience in implementing and monitoring these frameworks in the geographies where the firms clients are Good understanding of technology, associated industry trends and developments that impacts the firm and its business Excellent communication skills in English (in oral and written form) and in representing ERM in senior internal and external governance fora. Ability to work in a fast-paced, dynamic environment displaying a good conceptual understanding, practical thinking and implementation skills Role 2 - Information & Cyber Security Risk Manager 5 years of relevant ICS experience in performing security reviews of technology platforms and/or applications, with at least 2 years in Governance, Risk and Compliance. Strong acumen in setting up risk frameworks, policies, standards, baselines and procedures. Good hands-on experience reviewing cloud, application, information and cyber security. Good understanding of technology (e.g. cloud and containers) and Agile development concepts. Ability to explain theoretical concepts to team members with varying ICS backgrounds. Good knowledge of retail banking products and processes with a focus on digital products, functions, features and processes. Good understanding of industry trends and developments including impact on the business. People leader Strong communication skills -oral and written.

Job Title: Risk and Compliance Officer. Location: Mumbai, India. Reporting To: Chief Executive Officer / Head of Compliance. Department: Risk and Compliance. Job Summary: We are seeking a highly skilled and detail-oriented Risk and Compliance Officer to lead the identification, assessment, and mitigation of risks, and to ensure full compliance with applicable laws, regulations, and internal policies relevant to an NBFC operating in the fintech space. The ideal candidate will bring deep knowledge of RBI regulations, digital lending guidelines, and financial sector compliance requirements, and will be pivotal in building a strong governance and risk culture. Key Responsibilities: Risk Management: - Develop and maintain a robust enterprise risk management (ERM) framework. - Identify, assess, monitor, and report operational, credit, market, and strategic risks. - Monitor and manage risks related to lending, collections, and underwriting models. - Implement risk mitigation strategies, policies, and procedures. - Lead periodic stress testing, scenario analysis, and risk reviews. - Coordinate with functional teams to manage and respond to risk events. Compliance Management: - Ensure compliance with all applicable laws, including RBI regulations, Digital Lending Guidelines, PMLA, KYC/AML requirements, NBFC Master Directions, and IT Act. - Monitor regulatory changes and update internal policies accordingly. - Conduct periodic compliance audits and risk assessments. - Liaise with regulatory authorities (RBI, FIU, etc) and ensure timely and accurate regulatory filings and returns. - Oversee vendor and third-party compliance, including outsourced service providers. - Drive employee awareness programs on regulatory requirements and ethical standards. Policy & Governance: - Draft and maintain risk and compliance policies, SOPs, and frameworks. - Ensure board-level reporting on risk and compliance metrics. - Support the internal audit process and assist in implementing recommendations. - Lead the implementation of a whistleblower policy and compliance incident reporting framework. Qualifications & Experience: - Education: CA / LLB / MBA / PG in Risk Management / Finance / Compliance / Law or equivalent. - Experience: 5-10 years of relevant experience in risk and compliance roles within NBFCs, fintechs, or banks. - Strong understanding of RBI regulations, credit/lending business, digital lending ecosystem, and data privacy laws. - Exposure to regulatory technology (RegTech) tools and reporting systems is a plus. Skills Required: - Deep knowledge of Indian financial regulatory landscape. - Strong analytical and problem-solving abilities. - Excellent communication and stakeholder management skills. - Ability to work independently and lead cross-functional compliance initiatives. - Integrity, ethical judgment, and a risk-aware mindset. Preferred: - Prior experience working with growth-stage fintech NBFCs. - Exposure to RBI's Digital Lending Guidelines and customer data protection frameworks. - Experience in managing internal and external audits.

About the business Oreta is a leading technology services company that empowers business outcomes through advisory, delivery and managed services using network, cloud, security, and analytics. Our commitment to innovation and excellence has earned us numerous prestigious awards in the Australian technology sector, including recognition from ARN, Telstra, Deloitte and CRN. We maintain strategic partnerships with renowned industry leaders such as Microsoft, Telstra, Cisco, SentinelOne, Palo Alto Networks, VMware Premium, and Qualys, enabling us to deliver top-tier solutions and services. Our success is underpinned by our people and their desire to constantly delight the customer. Our culture is made up of our behaviours and values which define the way we work together and service our customers. We are passionate about living and breathing our 4 Core Values which are at the heart of our culture: Go Further Thrive Together Move with Velocity Have Fun About the role Location: Chandigarh We are looking to engage a well-presented Mid level GRC Consultant to work closely with our clients. You will be responsible for consulting, designing and reviewing formal documentation and business requirements to ensure they are in line with ISO 2700-1, NIST, NSW Mandatory 25, SOCI ACT 2018 and Essential 8 frameworks and maturity levels to name a few. This role is front facing and therefore you will be expected to engage with internal and external stakeholders, communicate with technical and non-technical teams and provide practical solutions to the end client. Essential Criteria Minimum of 3 5 years in Information technology or related field Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field in Cyber Exceptional communications skills (written, verbal & customer presentations) Strong attention to detail Ethical mindset Experience in a client facing role Strong analytical and problem-solving skills. Proven experience writing formal documentation, business requirements and reports (Excellent MS Office experience) Design and document GRC policies, procedures, and controls Develop and implement GRC strategies and roadmaps aligned with client objectives Understanding of ISMS, ISO 27001, SOC 2 compliance, NIST and Essential 8 Ability to work autonomously Assist and contribute to fellow team members and team discussions Being comfortable with a high degree of on-the-job learning An understanding of Information Security and a keen sense to learn Travel to client sites as needed. Strong understanding of GRC frameworks, Risk Management, business processes, security governance, audit compliance and risk assessment Conduct GRC assessments to identify risks and compliance gaps Prepare and present reports to clients on GRC findings and recommendations. Manage and track GRC projects and deliverables. Strong self-management skills, including time management and the ability to work on multiple assignments concurrently Highly regarded/Desirable Criteria Knowledge of security standards. Excellent written and oral skills Confident to face customers Excellent documentation skills Excellent time management skills Responsibilities (not limited to) include; As a Mid level GRC Consultant (Governance, Risk, and Compliance), your roles and responsibilities will include: Assisting senior consultants / Managers / Leads in conducting risk assessments and compliance audits. Researching and analysing regulatory requirements and industry best practices. Supporting the development and implementation of GRC frameworks and policies. Assisting in the identification and evaluation of potential risks and vulnerabilities. Collaborating with cross functional teams to ensure compliance with regulations and standards. Assisting in the development and delivery of training programs on GRC topics Supporting the creation and maintenance of documentation related to GRC processes. Assisting in the monitoring and reporting of key risk indicators and performance metrics. Participating in client meetings and providing support in presenting findings and recommendations. Keeping up-to-date with industry trends and developments in GRC. Benefits and Perks Oreta takes pride in providing a service of excellence to our customers and looking after our team members who enable our business to succeed. The successful applicant will enjoy working in a collaborative environment in either Sydney or Melbournes CBD with a friendly, diverse, inclusive and highly driven team (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. Employees rewards and recognition and have fun happy momentsJust to name a few of the perks. The renumeration base range will be negotiated based on the applicants relevant skills and experience. Performance reviews are conducted annually. If you are interested in a long-term career with potential to develop and grow with the business and are available to start immediately, then we look forward to hearing from you.

Identify potential financial/operational/ reputational/legal/compliance risks Implement risk mitigation plans to address identified risks Continuously monitor KRIs Regular risk reporting Adhere to regulatory requirements/frameworks Required Candidate profile Graduates with 20+ yrs exp in handling risk management - including ORM/ERM-with Indian companies in financial sector Awareness about latest developments in risk management

About Company BDO India LLP is the India member firm of BDO International. BDO India offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driven. Our focus on delivering exceptional client service is backed by a partner driven approach to offer tailor-made solutions ensuring quality excellence & time efficiencies. About Business Advisory Services: Leveraging our global expertise and experience, our team of subject matter experts and industry professionals work across sectors and industries to help our clients respond to the changing business environment. With deep analytic skills and state-of-the art technologies, our professionals deliver customized and innovative solutions to clients across geographies. We at BDO aid in sourcing independent findings on key aspects of operations with an increased focus on corporate governance and risk management services. Our team works with clients proactively to manage risk through the creation of sound internal controls. Details: Position Title: Associate & Senior Associate Department :BAS- Risk & Advisory (Non-FS) Reporting Manager : Assistant Manager or Manager Experience :At least 0-4 years of relevant experience into Risk Advisory Services -Non BFSI Sector (Manufacturing /Real Estate/Retail/Hospitality/Health Care/Service/Media/Technology and others). Qualification :CA Core Internal Audit Roles & Responsibilities: Learning and performing as an individual or part of team, working with experienced seniors to perform tasks such as audit procedures or reviewing of worked performed -vouching, verification, process understanding, walkthrough documentation. Reviewing status updates and preparing draft report, presentations/audit committee presentations etc. Contributing to improve operational efficiency on projects & internal initiatives. Ensuring compliances to companys or organisations policies and procedures Travelling within and outside Mumbai as necessary to meet client needs. Demonstrating creative thinking and rigorous analysis in execution and or review.

We are looking to engage a well presented Mid- level GRC Consultant to work closely with our clients. You will be responsible for consulting, designing and reviewing formal documentation and business requirements to ensure they are in line with ISO 2700-1, NIST, NSW Mandatory 25, SOCI ACT 2018 and Essential 8 frameworks and maturity levels to name a few. This role is front facing and therefore you will be expected to engage with internal and external stakeholders, communicate with technical and non-technical teams and provide practical solutions to the end client. Role & responsibilities Minimum of 3 years in Information technology or related field Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field in Cyber Exceptional communications skills (written, verbal & customer presentations) Strong attention to detail Ethical mindset Experience in a client facing role Proven experience writing formal documentation, business requirements and reports (Excellent MS Office experience) Understanding of GRC Understanding of ISMS, ISO 27001, SOC 2 compliance, NIST and Essential 8 Ability to work autonomously Assist and contribute to fellow team members and team discussions Being comfortable with a high degree of on-the-job learning An understanding of Information Security and a keen sense to learn Entry level understanding of security frameworks, Risk Management, business processes, security governance, audit compliance and risk assessment Strong self-management skills, including time management and the ability to work on multiple assignments concurrently Highly regarded/Desirable Criteria Knowledge of security standards. Excellent written and oral skills Confident to face customers Excellent documentation skills Excellent time management skills Responsibilities (not limited to) include; As an entry-level junior GRC (Governance, Risk, and Compliance) consultant, your roles and responsibilities will include: Assisting senior consultants / Managers / Lead in conducting risk assessments and compliance audits. Researching and analysing regulatory requirements and industry best practices. Supporting the development and implementation of GRC frameworks and policies. Assisting in the identification and evaluation of potential risks and vulnerabilities. Collaborating with cross functional teams to ensure compliance with regulations and standards. Assisting in the development and delivery of training programs on GRC topics Supporting the creation and maintenance of documentation related to GRC processes. Assisting in the monitoring and reporting of key risk indicators and performance metrics. Participating in client meetings and providing support in presenting findings and recommendations. Keeping up-to-date with industry trends and developments in GRC. Perks and benefits Oreta takes pride in providing a service of excellence to our customers and looking after our employees who enable our business to succeed. The successful applicant will enjoy working in the Chandigarh highly driven team members (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. Employees are rewarded with monthly team events, Employee of the Month, just to name a few of the perks

We are looking to engage a well presented Mid- level GRC Consultant to work closely with our clients. You will be responsible for consulting, designing and reviewing formal documentation and business requirements to ensure they are in line with ISO 2700-1, NIST, NSW Mandatory 25, SOCI ACT 2018 and Essential 8 frameworks and maturity levels to name a few. This role is front facing and therefore you will be expected to engage with internal and external stakeholders, communicate with technical and non-technical teams and provide practical solutions to the end client. Role & responsibilities Minimum of 3 years in Information technology or related field Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field in Cyber Exceptional communications skills (written, verbal & customer presentations) Strong attention to detail Ethical mindset Experience in a client facing role Proven experience writing formal documentation, business requirements and reports (Excellent MS Office experience) Understanding of GRC Understanding of ISMS, ISO 27001, SOC 2 compliance, NIST and Essential 8 Ability to work autonomously Assist and contribute to fellow team members and team discussions Being comfortable with a high degree of on-the-job learning An understanding of Information Security and a keen sense to learn Entry level understanding of security frameworks, Risk Management, business processes, security governance, audit compliance and risk assessment Strong self-management skills, including time management and the ability to work on multiple assignments concurrently Highly regarded/Desirable Criteria Knowledge of security standards. Excellent written and oral skills Confident to face customers Excellent documentation skills Excellent time management skills Responsibilities (not limited to) include; As an entry-level junior GRC (Governance, Risk, and Compliance) consultant, your roles and responsibilities will include: Assisting senior consultants / Managers / Lead in conducting risk assessments and compliance audits. Researching and analysing regulatory requirements and industry best practices. Supporting the development and implementation of GRC frameworks and policies. Assisting in the identification and evaluation of potential risks and vulnerabilities. Collaborating with cross functional teams to ensure compliance with regulations and standards. Assisting in the development and delivery of training programs on GRC topics Supporting the creation and maintenance of documentation related to GRC processes. Assisting in the monitoring and reporting of key risk indicators and performance metrics. Participating in client meetings and providing support in presenting findings and recommendations. Keeping up-to-date with industry trends and developments in GRC. Perks and benefits Oreta takes pride in providing a service of excellence to our customers and looking after our employees who enable our business to succeed. The successful applicant will enjoy working in the Chandigarh highly driven team members (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. Employees are rewarded with monthly team events, Employee of the Month, just to name a few of the perks

Job Title: Senior Risk Manager, UK ERM Corporate Title: VP Location: Mumbai, India Role Description DWS Global Risk Function: The DWS Group Risk Organisation is a dedicated control function, independent from the Front Office and mandated to manage risks for DWS Group and its subsidiaries globally. It has responsibility for the management of financial, non-financial and investment risks as well as for the comprehensive control of risk, and ongoing development of methods for risk measurement. In addition, the function is responsible for identifying, monitoring, analyzing, and reporting risk on a comprehensive basis. DWS Enterprise Risk Management: UK Risk As part of the above, the UK Enterprise Risk Management team (ERM) is responsible for the effective identification, management, control and reporting of financial and non-financial risks for DWS UK entities. It is responsible for: Monitoring, analysing, and reporting risk on a comprehensive basis. Ensuring that the risk appetite tolerances set out by the Boards of the legal entities in the UK are being adhered with appropriately. Ensuring that risk and capital management are aligned to the relevant internal policies as well as UK rules and regulations. In order to achieve the above, the team works with the businesses and functions operating in the UK entities, with the global risk teams specialized by risk category, as well as with local Control Functions such as Compliance, AFC, Finance, Legal and HR among others. What well offer you As part of our flexible scheme, here are just some of the benefits that you’ll enjoy, Best in class leave policy. Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities As a Senior Risk Manager at the UK Enterprise Risk Management team you will support and enhance the risk and control oversight responsibilities of the function spanning across all UK businesses, activities and risk types: Drive improvements on specific components of the Internal Capital Adequacy and Risk Assessment Process (ICARA), and relevant documentation. Drive risk assessment of new products and embed them into existing risk management frameworks or support development of relevant new frameworks. Monitor and report risk appetite metrics for the legal entities, including continuous enhancement and annual risk appetite statement update. Perform ad-hoc risk analysis and be involved in required change projects to de-risk or support new initiatives. Drive annual risk identification and assessment process consolidating all risk categories. Drive and implement enhancements to risk monitoring and reporting for local governing bodies. Develop and/or maintain key Risk documentation, including UK Risk Management Framework and that of other risk relevant processes or activities. Report to the UK Chief Risk Officer, as a member of the UK ERM team and represent the team in relevant governance forums. Your skills and experience Minimum 8 years experience in Risk Management across ERM and/or a variety of disciplines such as Operational Risk, Financial Risk and/or Investment Risk. Experience in Asset Management sector. Proven experience in roles with direct exposure to FCA prudential regulation. University degree, Business Management, Economics or similar. Proactive mind-set to propose process improvements and new solutions, including ability to influence and mobilize teams in different parts of the organization in order to achieve the set goals. Excellent PowerPoint skills, with ability to synthetize and experience in creating presentations for senior audience. Strong verbal presentation skills to Senior Management. Demonstratable ability to operate with high autonomy. How we’ll support you Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm

Our Vision: Bring Joy to customers by building global brands for the digital age Our Mission: Partner with the best founders to grow digital - rst brands using technology Our Values: - Think Big - Think 100x. Use technology for non- linear growth. Failure & experimentation are essential for growth - Fair, Fast & Founder Friendly - Be partner of choice, who is ethical, transparent and collaborative - Customer Delight - Customer love matters. Each of our brands needs to be in the top decile of consumer experience - Caring Meritocracy - Attract and grow the best talent. Create an inclusive culture where the best ideas win and you have the obligation to engage and dissent - Frugality - We are frugal with capital and use innovation to grow our brands in a sustainable manner Duties/Responsibilities: 1) Determine internal audit scope and develop annual plans across brands; and handle Internal Finance Control Audit 2) Document policies, process, framework; and own the Enterprise Risk Management function 3) Perform internal audit including obtaining, analyzing and evaluate accounting documentation, previous reports, data, flowcharts, etc.; and prepare audit findings memorandum 4) Prepare and present audit results to the appropriate stakeholders audit committee 5) Bring best practices in the ways we operate 6) Enable efficient execution of the internal audit plans, enabled by technology 7) Drive implementation changes / recommendation of Internal / external Audit Education and Experience: - CA is a must - A minimum of 8 years experience in a similar role. - Preferred Industries: e-Commerce, Manufacturing, Big4, Listed Entity experience

Our Values: Think Big - Think 100x. Use technology for non- linear growth. Failure & experimentation are essential for growth Fair, Fast & Founder Friendly - Be partner of choice, who is ethical, transparent and collaborative Customer Delight - Customer love matters. Each of our brands needs to be in the top decile of consumer experience Caring Meritocracy - Attract and grow the best talent. Create an inclusive culture where the best ideas win and you have the obligation to engage and dissent Frugality - We are frugal with capital and use innovation to grow our brands in a sustainable manner Duties/Responsibilities: 1) Determine internal audit scope and develop annual plans across brands; and handle Internal Finance Control Audit 2) Document policies, process, framework; and own the Enterprise Risk Management function 3) Perform internal audit including obtaining, analyzing and evaluate accounting documentation, previous reports, data, flowcharts, etc.; and prepare audit findings memorandum 4) Prepare and present audit results to the appropriate stakeholders audit committee 5) Bring best practices in the ways we operate 6) Enable efficient execution of the internal audit plans, enabled by technology 7) Drive implementation changes / recommendation of Internal / external Audit Education and Experience: - CA is a must - A minimum of 8 years experience in a similar role. - Preferred Industries: e-Commerce, Manufacturing, Big4, Listed Entity experience

Role & responsibilities Lead cross functional teams to strategize, plan, and execute a variety of programs, services and initiatives Drive accountability for assigned initiatives, limit risk exposure, and create efficiencies as appropriate Review strategic approaches and effectiveness of support function and business performance Perform assessments through fact finding and data requiring creative approaches to solving complex issues, and develop appropriate solutions or recommendations Make decisions in highly complex and multifaceted situations requiring solid understanding of business group's functional area or products, facilitate decision making and issue resolution, and support implementation of developed solutions and plans Collaborate and consult with members of the Business Execution team and team leaders to drive strategic initiatives Influence, guide and lead less experienced Strategy and Execution staff within the group Preferred candidate profile 5+ years of Business Execution, Implementation, or Strategic Planning experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Experience in the collation, review and preparation of Governance materials (including minute taking) for Governance Committees is essential. Experience in partnering with other functions to prepare and present management information is essential. Drive accountability for assigned initiatives, limit risk exposure, and create efficiencies as appropriate Developing and designing reporting and presentations suitable for senior management and executives Strong people management and collaboration skills, working with stakeholders across an international footprint. Collaborate and consult with team members and stakeholders to drive continuous improvement initiatives. Strong verbal and written communication skills with the ability to think logically. Ability to work independently and as part of a team and to manage multiple initiatives simultaneously. Highly organised, excellent time mgt skills and detailed orientated with solid experience in delivering and managing competing priorities. Excellent Microsoft Office skills including PowerPoint, Outlook, Excel, and Word Perks and benefits

Areas of responsibility & brief description Conduct internal audits across various departments to assess risk, control, and governance processes. Assist in the preparation of the annual audit plan and risk assessment. Independent execution of internal audit engagements. Perform analytical analysis as applicable for the audits. Identify areas for improvement and recommend actionable solutions to management. Prepare clear and concise audit reports, summarizing findings and recommendations. Monitor implementation of agreed action. Highlight delay in resolving audit findings. Collaborate with various teams to ensure adherence to policies and procedures. Indicative KRAs Timely completion of annual internal audit plan. Assist in regulatory inspections Timely reporting of open issues (% of audit issues resolved) Qualifications Chartered Accountant / Certified Internal Auditor / Certified Information Systems Auditor / other relevant certifications in Finance and IT. Minimum Experience Minimum five to seven years of experience in Internal Audit with a multinational or experienced in a large multinational consulting firm. Banking experience will be an added advantage. Candidate should also have an experience of conducting audits of IT and ITes Operations. Key skills & knowledge Attention to detail. Strong analytical skills, well-structured and organized working style. In-depth knowledge and understanding of systems and processes. Independent personality. Can draw his own conclusions and defend his position. Good oral and written communication skills and social competencies. Can communicate on executive and business management level. Understanding of IT systems and IT processes. Strongly multi-cultural oriented. Competencies / Personal Attributes Behavioral Competencies Entrepreneurship Quality & Service Orientation Teamwork & Collaboration Diversity Sensitivity Personal & Professional Development Delivering Results Communication Networking Leadership Functional Competencies Governance Risk and Control Analytical Skills Report Writing Oral Communication Skills Location- Goregaon, Mumbai, Maharashtra 400063

Areas of responsibility & brief description Conduct internal audits across various departments to assess risk, control, and governance processes. Assist in the preparation of the annual audit plan and risk assessment. Independent execution of internal audit engagements. Perform analytical analysis as applicable for the audits. Identify areas for improvement and recommend actionable solutions to management. Prepare clear and concise audit reports, summarizing findings and recommendations. Monitor implementation of agreed action. Highlight delay in resolving audit findings. Collaborate with various teams to ensure adherence to policies and procedures. Indicative KRAs Timely completion of annual internal audit plan. Assist in regulatory inspections Timely reporting of open issues (% of audit issues resolved) Qualifications Chartered Accountant / Certified Internal Auditor / Certified Information Systems Auditor / other relevant certifications in Finance and IT. Minimum Experience Minimum five to seven years of experience in Internal Audit with a multinational or experienced in a large multinational consulting firm. Banking experience will be an added advantage. Candidate should also have an experience of conducting audits of IT and ITes Operations. Key skills & knowledge Attention to detail. Strong analytical skills, well-structured and organized working style. In-depth knowledge and understanding of systems and processes. Independent personality. Can draw his own conclusions and defend his position. Good oral and written communication skills and social competencies. Can communicate on executive and business management level. Understanding of IT systems and IT processes. Strongly multi-cultural oriented. Competencies / Personal Attributes Behavioral Competencies Entrepreneurship Quality & Service Orientation Teamwork & Collaboration Diversity Sensitivity Personal & Professional Development Delivering Results Communication Networking Leadership Functional Competencies Governance Risk and Control Analytical Skills Report Writing Oral Communication Skills Location- Goregaon, Mumbai, Maharashtra 400063

Areas of responsibility & brief description Conduct internal audits across various departments to assess risk, control, and governance processes. Assist in the preparation of the annual audit plan and risk assessment. Independent execution of internal audit engagements. Perform analytical analysis as applicable for the audits. Identify areas for improvement and recommend actionable solutions to management. Prepare clear and concise audit reports, summarizing findings and recommendations. Monitor implementation of agreed action. Highlight delay in resolving audit findings. Collaborate with various teams to ensure adherence to policies and procedures. Indicative KRAs Timely completion of annual internal audit plan. Assist in regulatory inspections Timely reporting of open issues (% of audit issues resolved) Qualifications Chartered Accountant / Certified Internal Auditor / Certified Information Systems Auditor / other relevant certifications in Finance and IT. Minimum Experience Minimum five to seven years of experience in Internal Audit with a multinational or experienced in a large multinational consulting firm. Banking experience will be an added advantage. Candidate should also have an experience of conducting audits of IT and ITes Operations. Key skills & knowledge Attention to detail. Strong analytical skills, well-structured and organized working style. In-depth knowledge and understanding of systems and processes. Independent personality. Can draw his own conclusions and defend his position. Good oral and written communication skills and social competencies. Can communicate on executive and business management level. Understanding of IT systems and IT processes. Strongly multi-cultural oriented. Competencies / Personal Attributes Behavioral Competencies Entrepreneurship Quality & Service Orientation Teamwork & Collaboration Diversity Sensitivity Personal & Professional Development Delivering Results Communication Networking Leadership Functional Competencies Governance Risk and Control Analytical Skills Report Writing Oral Communication Skills Location- Goregaon, Mumbai, Maharashtra 400063

Areas of responsibility & brief description Conduct internal audits across various departments to assess risk, control, and governance processes. Assist in the preparation of the annual audit plan and risk assessment. Independent execution of internal audit engagements. Perform analytical analysis as applicable for the audits. Identify areas for improvement and recommend actionable solutions to management. Prepare clear and concise audit reports, summarizing findings and recommendations. Monitor implementation of agreed action. Highlight delay in resolving audit findings. Collaborate with various teams to ensure adherence to policies and procedures. Indicative KRAs Timely completion of annual internal audit plan. Assist in regulatory inspections Timely reporting of open issues (% of audit issues resolved) Qualifications Chartered Accountant / Certified Internal Auditor / Certified Information Systems Auditor / other relevant certifications in Finance and IT. Minimum Experience Minimum five to seven years of experience in Internal Audit with a multinational or experienced in a large multinational consulting firm. Banking experience will be an added advantage. Candidate should also have an experience of conducting audits of IT and ITes Operations. Key skills & knowledge Attention to detail. Strong analytical skills, well-structured and organized working style. In-depth knowledge and understanding of systems and processes. Independent personality. Can draw his own conclusions and defend his position. Good oral and written communication skills and social competencies. Can communicate on executive and business management level. Understanding of IT systems and IT processes. Strongly multi-cultural oriented. Competencies / Personal Attributes Behavioral Competencies Entrepreneurship Quality & Service Orientation Teamwork & Collaboration Diversity Sensitivity Personal & Professional Development Delivering Results Communication Networking Leadership Functional Competencies Governance Risk and Control Analytical Skills Report Writing Oral Communication Skills Location- Goregaon, Mumbai, Maharashtra 400063

Experience in the broking industry or financial services sector, especially in broking, depository services, or portfolio management. Position Overview We are seeking a dynamic and detail-oriented professional to join our Internal Control Unit . The ideal candidate will play a pivotal role in managing, monitoring, and enhancing the organizations operational risk framework and internal controls. This position requires strategic oversight, thorough policy reviews, and active collaboration with stakeholders to ensure compliance with regulatory and organizational standards. Key Responsibilities Regulatory Assurance: Conduct regulatory assurance across areas such as Broking, Depository Participants, Portfolio Management Services, Research Analyst, Algorithm Trading, Business Associates, Code of Conduct and other critical areas. Highlighting non-compliance to the senior management Follow-up with concern stakeholder for closure of the observation Risk Control Self-Assessment (RCSA): Identify operational risks, document controls, and test their effectiveness. Regularly update the RCSA framework to address emerging risks. Review model risk and assess its impact. Risk Appetite Statement (RAS) Management: Monitor and report on RAS at the group and organizational level. Conduct periodic threshold reviews. Implement a breach management framework. Prepare and report on Group RAS metrics. Internal Control Policy Review: Review and implement key policies, including BCP, Outsourcing, Error Trade Policy, Fraud Prevention, and Operational Risk Management. Ensure policies align with regulatory requirements and organizational objectives. Conduct gap analyses and strengthen controls within existing processes. Validation of the compensation given to the clients. Enterprise Risk Management (ERM): Develop and implement the ERM framework. Monitor critical organizational parameters to enhance enterprise-wide risk visibility. Prepare the ICAAP document as part of the ERM process. Risk and Compliance Awareness / Culture: Periodically conduct awareness sessions on risk and compliance. Perform weekly surveillance of mis-sales and business associates (BA). Exception Reporting and RCA Framework: Conduct in-depth Root Cause Analysis (RCA) for exceptions and anomalies. Systematically address and prioritize deviations to ensure long-term solutions. Process Gaps and Exception Reporting: Identify failures in product design, operations, or process implementation. Collaborate with stakeholders to resolve open observations and ensure timely follow-ups. Communicate RCA findings and identified issues effectively across the organization. Review and update process documentation to address identified gaps. Enhance system controls to mitigate risks. Qualifications and Skills Educational Qualification: MBA/CA with a minimum of 2 years of relevant experience in internal control functions or operational risk management. Industry Experience: Candidates with relevant experience in the broking industry are strongly preferred. Technical Skills: Strong understanding of risk management frameworks and regulatory compliance requirements. Proficiency in designing and monitoring policies, RCSA, and RCA frameworks. Knowledge of enterprise risk management, fraud prevention, and internal control systems. Soft Skills: Excellent analytical and problem-solving capabilities. Strong communication and stakeholder management skills. Detail-oriented with a proactive and structured approach to resolving issues. Experience in the broking industry or financial services sector, especially in broking, depository services, or portfolio management .

About the Role: The Lead Third-Party Risk Analyst will serve as a trusted advisor for internal UKG business stakeholders and will be responsible for identifying, assessing, and mitigating risks related to third-party relationships and services. Risks include information security, privacy, financial, business resiliency, and more. The role demands an organized, action-oriented team player with the ability to prioritize daily work and support on multiple initiatives simultaneously; strong communication and customer focus is required. Supports the Third-Party Risk Management program, providing support to Business Partners and Procurement department during vendor selection and contract negotiation processes. Identifies risks with prospective services and products and works with Business Partners to factor the risk into the vendor selection process. Works to gain process efficiencies and performs monthly analysis on team metrics. Supports the Third-Party Risk Management team in daily operations. Periodically reassesses Third Parties based on risk and/or a material change in the utilization of that Third Party Identifies third parties for ongoing monitoring to ensure reviews are performed in a timely manner. Assesses risk associated with third-party partner and vendor relationships, focusing on the third partys ability to demonstrate existence of information security controls, privacy controls and ability to support critical business functions of the company. Advises Business Partners on appropriate implementation of information security and privacy controls for new third-party services, leveraging a combination of these controls and the Third Partys security and privacy programs to maintain UKGs information security and privacy posture. Partners with Procurement and Legal departments during contractual negotiations to provide consultation on security and privacy clauses included in third party agreements. Identifies risks associated with a Third Party and tracks those risks as necessary for future assessment. Administers the companys Vendor Risk Management (VRM) platform which supports the Third-Party Risk program. Responsibilities include access management, configuration changes and report generation. About You: Basic Qualifications: 5-7 years of related work experience in third-party risk, information security governance, enterprise risk, and/or related functions (such as IT audit and IT risk management). 5-7 years of experience providing input into third party contract agreements from an information security and privacy perspective. BS/BA degree in Enterprise Risk Management, Information Security, Computer Information Systems/Management Information Systems or related discipline or equivalent experience. Experience administering Process Unity VRM tool or similar platform. Proficiency in comprehending the dynamics of third-party relationships, including vendors, partners, suppliers, and contractors. Knowledge of the risks associated with external entities that interact with an organizations systems or process confidential information. Ability to assess risks across various dimensions (such as information security, privacy, business continuity, financial, etc.). Understanding of data privacy and cybersecurity regulations (such as GDPR, CCPA, DORA, etc.) Knowledge of business continuity planning and disaster recovery and ability to evaluate third-party capabilities in maintaining business resiliency. Knowledge of security practices in cloud environments (such as data encryption, access controls, and compliance with regulations). Familiarity with Software as a Service (SaaS) and potential risks. Experience with information security management frameworks such as AT101 SOC 2, ISO, ITIL, COBIT, NIST to include development of policies, process, and procedures within the environment. Preferred Qualifications: Excellent verbal and written communication skills to effectively communicate with employees, vendors, third-party partners, customers, business partners, and all levels of management. Experience supporting regulatory and compliance programs (such as HIPAA, PCI, MA 201 CMR 17, FedRAMP). Experience designing and implementing controls within corporate networks to include computer/network security and operating systems such as UNIX, Linux, and WINDOWS, as well as LAN/WAN internetworking protocols such as TCP/IP and network perimeter protection (firewalls). Knowledge of risks associated with GenAI. Experience leveraging Enterprise Risk Management and Issues Management applications in LogicGate platform. CISA, CISM, CRISC, CISSP, CTPRP, or similar security certification.

Our Vision: Bring Joy to customers by building global brands for the digital age Our Mission: Partner with the best founders to grow digital - rst brands using technology Our Values: - Think Big - Think 100x. Use technology for non- linear growth. Failure & experimentation are essential for growth - Fair, Fast & Founder Friendly - Be partner of choice, who is ethical, transparent and collaborative - Customer Delight - Customer love matters. Each of our brands needs to be in the top decile of consumer experience - Caring Meritocracy - Attract and grow the best talent. Create an inclusive culture where the best ideas win and you have the obligation to engage and dissent - Frugality - We are frugal with capital and use innovation to grow our brands in a sustainable manner Duties/Responsibilities: 1) Determine internal audit scope and develop annual plans across brands; and handle Internal Finance Control Audit 2) Document policies, process, framework; and own the Enterprise Risk Management function 3) Perform internal audit including obtaining, analyzing and evaluate accounting documentation, previous reports, data, flowcharts, etc.; and prepare audit findings memorandum 4) Prepare and present audit results to the appropriate stakeholders audit committee 5) Bring best practices in the ways we operate 6) Enable efficient execution of the internal audit plans, enabled by technology 7) Drive implementation changes / recommendation of Internal / external Audit Education and Experience: - CA is a must - A minimum of 8 years experience in a similar role. - Preferred Industries: e-Commerce, Manufacturing, Big4, Listed Entity experience

Basic Function: Enterprise Risk Management As an Risk Manager, you will be part of the India Risk function and would be responsible for providing oversight and risk advice from second line perspective to India Business on Non-Financial Risk (NFR) matters. This role would assist in relaying the MetLife Enterprise framework to India Branch and oversee the application of and ongoing changes. Including the quality, transparency and accuracy Non-financial risk information and the effectiveness of risk mitigation activities. This position is responsible for overseeing and managing companys Enterprise Risk Management, implementation, policies & and compliance efforts. This role involves ensuring that the organization complies with applicable data protection laws and regulations, safeguarding sensitive information, and promoting a culture of data privacy and security across all defined areas Establish, implement, operate, monitor, review, maintain and improve NFRM practices Test Controls/ mitigation put in place to manage risk Should have experience in managing Operational Risk for Technology services/ areas Take corrective and preventive actions, based on Governance structure Enterprise Risk Management, Compliance Manage Ops Risk for Technology Area within MetLife GCC Align risk appetite and strategy with Risk Framework deployment and Enhance risk response decisions Reduce operational surprises and losses Identifying and managing multiple and cross-enterprise risks Direct and control the organization with regard to risk management Improve the identification of opportunities and threats Improve stakeholder confidence and trust Enhance health and safety performance, as well as environmental protection Improve loss prevention and incident management Improve organizational resilience Identify potential problems before they occur so that risk handling activities can be planned and invoked as needed to mitigate adverse impacts on achieving objectives Conflict of Interest, Enterprise Compliance Office Information Technology Review the technology, management systems, processes, roles, activities, vendors and suppliers used in the delivery of IT services Guide IT Operations team to to plan, establish, implement, operate, monitor, review, maintain and improve Service Management System (SMS) Partner with IT to design, reengineer & sustain data privacy practices Bridge the gap between control requirements, technical issues and business risks Assurance / Audit Manage audit programs including establishing the audit programme objectives, establishing the audit programme, implementing the audit programme, monitoring the audit program, reviewing and improving the audit programme Conduct systematic and independent audits for obtaining audit evidences and evaluating them objectively to determine the extent to which the audit criteria are fulfilled including Initiating the audit, Preparing audit activities, Conducting the audit activities, Preparing and distributing the audit report, Completing the audit and Conducting audit follow-up Facilitate corporate and external audits Competencies & Skills: Individuals with Functional Certifications around Operational Risk from reliable certifying body with proven track record Strong People Leader with proven people skills Strong communication and presentation skills; Ability to articulate and influence clients / customers is a critical requirement Should be capable of building and sustaining strong relationships with his / her own team , International Clients and Service Partners Work Experience : ~15 yrs of work experience in Operations Risk Area, Corporate Ethics and Compliance.

Our Values: Think Big - Think 100x. Use technology for non- linear growth. Failure & experimentation are essential for growth Fair, Fast & Founder Friendly - Be partner of choice, who is ethical, transparent and collaborative Customer Delight - Customer love matters. Each of our brands needs to be in the top decile of consumer experience Caring Meritocracy - Attract and grow the best talent. Create an inclusive culture where the best ideas win and you have the obligation to engage and dissent Frugality - We are frugal with capital and use innovation to grow our brands in a sustainable manner Duties/Responsibilities: 1) Determine internal audit scope and develop annual plans across brands; and handle Internal Finance Control Audit 2) Document policies, process, framework; and own the Enterprise Risk Management function 3) Perform internal audit including obtaining, analyzing and evaluate accounting documentation, previous reports, data, flowcharts, etc.; and prepare audit findings memorandum 4) Prepare and present audit results to the appropriate stakeholders audit committee 5) Bring best practices in the ways we operate 6) Enable efficient execution of the internal audit plans, enabled by technology 7) Drive implementation changes / recommendation of Internal / external Audit Education and Experience: - CA is a must - A minimum of 8 years experience in a similar role. - Preferred Industries: e-Commerce, Manufacturing, Big4, Listed Entity experience