IT Head - Governance & Compliance - Mumbai

About the Role:

Role & responsibilities:

Establish and monitor an auditable governance framework, consistent with general regulatory requirements forinformation technology.

• Own the role of IT Audit SPOC. Co-ordinate with auditors like Internal Audit Department (IAD), Regulators (RBI/
• NHB), Statutory Auditors and external accessors. Cadence mechanism for tracking and closure of audit observations.
• Creation of knowledge repository
• Ensure adherence to 100% accuracy of Risk control Policy and standards.
• Enabling strong IT governance, security, regulatory compliance & adherence to management model
• Coordinating for: Cyber security audit, Internal Audit, compliance & Process, ITGC, VAPT, GRC. SEBI Compliance
• System implementation assessment
• Setting up and running the user access management framework for IT
• Circulating KPI dashboard summary for regular status on key indicators (Financial and Non-Financial indicators)
• Monthly review of Self Risk and Risk control Assessor and Reviewer
• Establish and Monitor Vendor Onboarding, Monitoring and Risk assessment framework.
• Part of a team of BCM-risk management professionals who work with senior management in all lines of business tocoordinate business continuity governance activities
• Continuity planning and event management, development and facilitation of enterprise wide event exercises,relationship management with external vendors, development of corporate policy, standards, and guidelines• Being proactive with issues with a problem-solving attitude, and, at the same time keeping all stakeholders aligned.• Contribute to the development and maintenance of the enterprise-wide Access management and access reviewprogram including development of tools and instructional guides for business.• Define and set-up SOP, templates, workflow and cadence mechanisms for ITIL compliant processes in line with RBI &NHB norms for NBFC and HFC around:
• Business Concept Note and translation into Business Requirement Document and subsequent Functional

Specification document

• Demand tracker
• Capacity planning (software delivery)
• Change management
• Release management
• Incident management
• Patch management
• IT Strategy committee framework
• IT Steering committee framework
• IT Risk assessment
• CTO monthly dashboard
• Cadence meeting with business stakeholders
• Operational MIS
• Business Continuity plan
• IT strategy document

Requirements:

• Masters degree with

  12 years of relevant experience

  in BFSI.
• Strong expertise in IT governance, audit, compliance, and risk frameworks (COBIT, ISO, ITIL, etc.).
  
• Industry certifications (CISA, ISO, ITIL, CCSP, etc.) preferred.
  
• Excellent leadership, stakeholder management, and communication skills.