Manager, Risk Management

At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking.

At Capital One India, we are at the cutting edge of solving fundamental business problems using advanced data methodologies, statistics, and machine learning algorithms. We analyze data to derive valuable business insights, make decisions, and develop innovative and patentable products.

As a Manager, you will have responsibilities associated with Capital One India’s Risk Management team, helping to ensure a timely and accurate month-end risk reporting, in addition you will help consult on initiatives, programs, and projects to raise their game in Information Security and Risk Management. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. Ensure all strategic initiative coming your away is delivered in a timely manner

Responsibilities

• As part of the India Risk Management team ensure timely completion of all activities, adequate cross-training and backup, completion of requests from India Leadership, and strategic planning for the Risk Management function.

• Manage PSP - Governance (Policies, Standards & Procedures)

  by reviewing and ensuring compliance with the Enterprise Policy Program standard, reporting on the creation of new documents, renewals/expiry of existing documents, and Standard Adherence Assessments conducted by CPO (Corporate Policy Office), maintaining a repository of India-wide documents, influencing updates to policies and standards to enhance risk management activities, and maintaining Risk Management PSPs and SOPs while drafting new documents as the team's scope of work expands.

• Oversee Corporate Insurance

  by renewing and maintaining various policies like Worker’s Compensation (WC), Property Insurance, Directors and Officers Liability (D&O), and Commercial General Liability (CGL), while also coordinating with the insurance broker to facilitate claims

• Manage Physical Records

  by facilitating the storage and transport of physical records via a third-party and maintaining an Inventory Index to track data and retention requirements by law

• Oversee Internal Audit

  by finalizing the vendor to conduct the annual audit, drafting the scope and IA calendar, coordinating with internal teams to facilitate the audit, assisting in the timely closure of observations/recommendations, and reporting the status and details of observations to the Leadership Team (LT)

• Prepare risk reports

  at the India site level within the Enterprise Risk Management framework, including key topics such as phishing drill reports to the Leadership Team (LT), bi-annual Official Records (non-HR GDrive) certification and reporting to the Risk Head, quarterly Sensitive Data Assessments and reporting to the Risk Head, monthly Hard Disk Drive (HDD) remediation reports to the LT, and monthly Iron Mountain document storage reports to file managers and respective LTs
• Constantly work with US Risk Office and Cyber teams to expand the scope of Risk Reporting

• Prepare Assurance Reports

  , including monthly Controls execution reports to owners and relevant LTs, and coordinating with Capital One US and India support teams to report on the status of IA TPM, ABAC, BCP testing, Standard Adherence Assessments, and Statutory Audits
• Work closely with LT to maintain artefacts (like Vision, Roadmap, etc) in the internal portal for Capital One internal Lean - Six Sigma based framework

• Present Risk and Assurance reports

  to the Leadership Team (LT) in the Monthly Business Review (MBR), chaired by the India head, US Risk Office head, and US Legal head, as well as in the Quarterly Risk, Legal & Tech Committee, chaired by the India head, US Risk Office head, US Legal head, and US Tech Head
• Ideate and implement Risk Management framework across Risk Taxonomy and refresh framework based on evolving business needs/ risks
• Partner with other Risk Management functions across the company and cross functional teams to conduct Process Level Assessments
• Maintain relationships with key stakeholders to ensure timely delivery of commitment

Basic Qualifications

• Bachelor’s degree in engineering & MBA

• 10-14 years of overall experience

• Atleast 5 years of experience in Enterprise Risk Management

• Good knowledge on Enterprise Risk Management framework and implementation, 3 Lines of Defense framework & handling/ facilitating Internal Audit
• Good communication skills - Verbal, written and presentation

Preferred qualifications

• Majority of the experience in risk management
• Experience in Banking or consulting preferred
• Enterprise Risk Management - Level 2 qualified (by IRM - Institute of Risk Management)
• COSO framework, ISO 31000 and ISO 27001