94 Risk Governance Jobs - Page 3

Job Name - Delivery Manager GDS Consulting Job Location- Bangalore, Hyderabad, GGN, Noida, Kolkata, Chennai, Kerala Position Summary The EY Global Delivery Services (GDS) Consulting Quality, Delivery Excellence, and Risk Compliance function aims for "zero surprise" delivery and "zero non-compliance." This function adds value across the GDS Consulting practice, which operates in a CMMI Level 5 certified environment and manages over 5,000 global engagements. We are seeking a skilled Delivery Manager to oversee large-scale, multi-competency, and multi-location programs. The ideal candidate will have hands-on experience in technology delivery within a distributed setup, along with a strong background in operations management and governance. This role involves collaboration with clients, Global Client Service Partners (GCSPs), account leaders, engagement partners, and GDS stakeholders. The focus will be on effective project governance, risk identification, and execution management. The successful candidate will understand large-scale technology implementation, digital transformation initiatives and have experience in managed services, CMMI, Quality Management Systems (QMS), risk management, and process frameworks. This leadership role will span multiple consulting sub-service lines (Technology, Business, Risk, People, and Managed Services) and global GDS locations (India, Philippines, Poland, Spain, and Mexico), reporting to the engagement partner. This position will enhance service delivery stability by improving predictability and transparency through integrated governance practices. The goal is to elevate service delivery maturity to "gold standard" levels by applying consistent, industrialized methods and tools. Responsibilities include enabling large-scale industrialization, implementing metrics-driven governance, leveraging AI-powered hyper-automation, and providing early-warning intelligence to engagement partners and account leaders on high-risk engagements. The responsibilities of the Delivery Manager include, but are not limited to: • Ensuring the delivery of high-value services to EY clients by implementing standardized methods, tools, and processes. • Empowering teams with standardized service delivery processes to enhance their competencies. • Collaborating with Global Client Service Partners (GCSPs), account leaders, and other stakeholders. • Driving value creation through continuous improvement and the transformation of services, with the ultimate goal of achieving zero surprise delivery, exceptional customer experiences, and fostering a culture of quality and excellence. • Engaging in client discussions and managing escalations effectively. • Overseeing delivery governance: Facilitating the development, implementation, and tracking of delivery governance frameworks across regions to ensure consistent practices and adherence to project delivery protocols. Leading the governance review process to ensure that all critical milestones are met and that any project deviations are identified early and managed effectively. Essential Functions of the Job Risk Identification & Management: • Collaborate with delivery teams and engagement partners to identify operational, financial, and technical risks at various delivery stages. • Facilitate risk workshops to assess emerging risks and their impact on timelines, budgets, and quality. • Guide the development of actionable risk mitigation plans to address delivery challenges. Compliance & Continuous Improvement: • Ensure compliance with quality management systems (QMS), CMMI, and relevant industry standards. • Identify and implement process improvements in governance, risk management, and project delivery. • Capture and share lessons learned from governance reviews for future success. Performance Monitoring & Reporting: • Lead governance reporting sessions with regional leaders to track delivery progress and risks. • Provide real-time visibility into delivery health and escalate issues with actionable recommendations. • Maintain detailed risk reports and governance dashboards for leadership review. Client Engagement & Communication: • Act as the main contact for delivery excellence leaders and stakeholders regarding governance and risks. • Engage with senior stakeholders to provide insights on governance performance and alignment with business objectives. • Communicate governance and risk management concepts clearly to both technical and non-technical audiences. Delivery Enablement & Coaching: • Support delivery teams with coaching and mentoring in governance processes. • Foster a culture of accountability and continuous improvement while focusing on timely and budget-compliant results. Analytical/Decision-Making Responsibilities • Understand and resolve critical issues related to delivery, finance, contracts, commercial aspects, and client engagement. • Manage complex operating models involving diverse stakeholders across GDS locations, competencies, member firms, and clients. • Implement and execute delivery risk management and governance frameworks. • Provide guidance and define actions to address delivery, contractual, solution, transition, and managed services issues impacting engagement quality and financials. • Identify critical engagements through predictive risk assessments and mitigation planning. • Establish action plans to address high-risk engagements by collaborating with global stakeholders, including EY clients. • Bring an "Outside-In" perspective based on strong client service experience and a process-driven approach. Education and Experience • A bachelors degree in information systems or engineering and Master's from a reputable business school are required. • Minimum of 15 years of IT industry experience. • Strong knowledge of service delivery across various industries. • Experience working with global client CXOs on contract negotiation, account management, and risk mitigation. • Exposure to industrialized delivery and client relationship roles in multiple geographies. • Understanding of the competitive landscape in industrialized processes and AI-enabled technology. • Hands-on experience in turning around troubled engagements, including financial and customer relationship issues. • Industry experience in implementing CMMI, ISO, Information/Data Security, contract compliance, SOX, and Malcolm Baldrige excellence models. Knowledge and Skill Requirements • Proven experience in Technology Delivery for large-scale, multi-industry, and multi-geography engagements. • Deep knowledge of end-to-end service delivery, including sales, solutioning, and risk prediction. • Strong understanding of contracts, engagement financials, and hands-on service delivery in complex engagements. • Experience in implementing quality frameworks, methodologies, and governance processes. • Familiarity with industry certifications (ISO, CMM, IS) and change management within EY GDS. • Visionary in driving organization-wide transformation agendas. • Implementation of delivery excellence practices across service lines or industry segments. • Exposure to industry best practices for optimized, no-surprise delivery. • Experience in global organizations with multiple stakeholders and cross-region collaboration. • Conflict management skills in driving transformation initiatives.

Location: Noida Experience: Minimum 4- 10 years Responsibilities: Assist in the implementation and maintenance of information security strategies, ensuring alignment with regulatory requirements, industry standards, and business goals. Support the development and enforcement of information security policies, procedures, and best practices to protect data integrity, confidentiality, and availability. Monitor security alerts, analyze potential threats, and assist in incident detection, response, and resolution to mitigate security risks. Conduct risk assessments and vulnerability scans to identify security weaknesses and assist in remediation efforts. Work closely with engineering and IT teams to embed security best practices across the software development lifecycle and cloud infrastructure. Assist in security audits, compliance checks, and regulatory reporting to ensure adherence to RBI guidelines, DPDP Act, ISO 27001, and Cert-IN regulations. Manage and configure security tools such as firewalls, IDS/IPS, SIEM, endpoint protection, and vulnerability scanners. Assist in access control management, ensuring appropriate permissions and role-based access policies are in place. Contribute to security awareness programs, helping employees understand cybersecurity threats and best practices. Stay updated on emerging security threats, attack vectors, and defensive technologies, recommending enhancements to security processes. Qualifications and Skills: Bachelors degree in Information Security, Computer Science, IT, or a related field. Minimum of 4 years of experience in information security, cybersecurity operations, or risk management. Hands-on experience with firewalls, IDS/IPS, SIEM tools, endpoint security, and vulnerability management. Strong understanding of network security, encryption, identity and access management (IAM), and cloud security (AWS, Azure, or GCP). Knowledge of security frameworks such as ISO 27001, NIST, CIS Controls, and RBI IT Guidelines. Exposure to penetration testing, security log analysis, incident response, and threat intelligence. Strong problem-solving, analytical, and communication skills. Relevant certifications preferred (CEH, Security+, CISSP (Associate), CISM). Ability to work in a fast-paced environment, collaborate with cross-functional teams, and maintain a security-first mindset.

Hiring for USA based big Multinational Company (MNC) The Risk and Control Manager is responsible for identifying, assessing, managing, and mitigating operational, financial, and compliance risks within the organization. This role involves designing and implementing effective internal controls, monitoring risk exposure, and working with stakeholders to strengthen risk governance and ensure regulatory compliance. Develop and maintain the organizations risk and control framework, policies, and procedures. Identify key risks across operational, financial, compliance, and strategic areas. Assess the effectiveness of existing controls and recommend improvements where necessary. Work with business units to embed risk management and control awareness into day-to-day operations. Conduct risk assessments, control testing, and root cause analysis of incidents or control failures. Develop and monitor key risk indicators (KRIs) and control performance metrics. Coordinate risk and control self-assessments (RCSAs) with various departments. Prepare risk reports for senior management, audit committees, and regulatory bodies. Ensure compliance with internal policies, legal regulations, and industry standards. Support internal and external audits and lead remediation of audit findings. Facilitate training and workshops to promote a culture of risk awareness and accountability.

Our client is Leading Global IT Service and Consulting Organnization Experience- 10 to 15 years Work location: Pune Notice period: Immediate to 30 days Position : Cybersecurity-GRC Governance, Risk, and Compliance Expertise Practical experience with cybersecurity compliance framework (eg., NIST). Ability to evaluate cybersecurity controls and align them with changing regulatory requirements. Experience in maintaining audit trails and managing compliance documentation. Experience managing teams in regulatory operations or cybersecurity GRC. Direct experience engaging with regulators or managing compliance audits. Tools & Processes Exposure to GRC tools like Archer or similar for managing control frameworks and evidence. Familiarity with metrics tracking and reporting for regulatory compliance performance. Comfortable using audit and risk management trackers for organizing and documenting lifecycle of compliance engagements. Education, Certifications and Experience Bachelor's degree in IT, Risk, or related field. At least one certification: CISSP, CISA, CISM. 8+ years in Cybersecurity GRC Experience with regulatory audits or compliance programs.

Position Purpose Located within the RISK Function of BNP Paribas (BNPP), the role of the Head of RISK ORM is to ensure that the components of the operational risk management framework are implemented and operating effectively within ISPL, and to provide RISK ORM management and Business senior management with relevant, synthetic, transparent, exhaustive and consistent information and a front-to-back view of operational risk across ISPL activities. To achieve this objective, this 2nd line of defense (LOD2) role works closely with RISK ORM Regional and Central teams and with ISPL management and stakeholders. RISK ORM ISPL mandate is to independently challenge and supervise the operational risk management framework of ISPL activities as described in level 2 procedure Organizational framework and governance for Operational Risk Management & Permanent Control Framework. This includes control framework adequacy checks, independent challenge, proximity with the business and contribution to the sign-off process on key decisions. Due to the global and regional models applied by the BNP Paribas (BNPP) activities outsourced to ISPL, the role covers as well the contribution to reviews, control testing, analysis and reports carried out under the supervision of the RISK ORM Regional and Central teams. In addition, the Head of RISK ORM ISPL is responsible to ensure that the services outsourced to the RISK ORM ISPL from RSIK ORM APAC/other regions are provided with the required level of quality and within the timelines prescribed. In this context, the Head of RISK ORM ISPL, is member of the RISK ORM APAC Executive Committee and RISK ORM CIB Executive Committee, Central. The incumbent reports hierarchically to the Chief Risk Officer ISPL and with functional Regional Reporting. Key Responsibilities As the 2nd line of defense, the Head of RISK ORM has the following general responsibilities for the operational risk processes and themes within the scope of RISK ORM (including fraud, third-party risk management): ensuring consistent application of the BNPP group and Group RISK ORM methodological framework and procedures, and adapting locally as required; assist and advise the 1st Line of Defence (LoD1) in ISPL in this respect, in liaison with relevant RISK ORM APAC and Central teams; independent challenge of the identification and assessment of the operational risk profile (actual, potential or emerging) and of the risk mitigation framework, coming from the operating entities: either during a regular exercise, such as the review of the RCSA (Risk & Control Self-Assessment), or by participating to the decision making process (such as a validation process, granting of exemptions or the definition of a remediation plan); ensuring effective implementation of risk mitigation strategies, framework & actions with LoD1, through implementation of relevant indicators, follow up of action plans and independent challenge of controls; contribution to further raising operational risk awareness, disseminating operational risk culture and training on the risk mitigation framework; development of a strong partnership with and support LoD1 key stakeholders in ISPL on operational risk matters; independent assessment and alert highlighted to management and key stakeholders as required, on the level of risk and on the risk mitigation framework status; contribute to the opinion to be expressed by the RISK ORM teams in relation to New Activities Approval Committees (NAC) and Transaction Approval Committees (TAC) and involving activities to be outsourced to ISPL; implement and contribute to the operational risk governance bodies, such as the ISPL Internal Control Committees (and other operational risk forums); prepare and submit the relevant operational risk reports under RISK ORM ISPL direct responsibility, and contribute the 2nd level of defence opinion on the operational risk reports produced by ISPL 1st line of defence (semi-annual report on controls; annual operational risk and control report, ); act as a local correspondent for transversal themes under the responsibility of RISK ORM, such as third party risk management, and anti-fraud topics; coordinate with the relevant RISK ORM ICT and data protection officers in the Territory / Regional or Central; contribute to RISK ORM APAC & global initiatives (e.g. projects). Operate BNPP fraud alert management and investigation framework for the part assigned to the LoD2 (incl. suspected, attempted frauds), in liaison with the RISK ORM APAC Anti-fraud team; In addition, the Head of RISK ORM ISPL ensures assistance to his/her peers working in other independent LoD2 roles, including compliance, legal, finance, and tax risk management, whenever expertise on its themes or processes is required or requested. In relation to the services provided by RISK ORM ISPL to RISK ORM APAC or to other Regions, the Head of RISK ORM ISPL should ensure that they are in line with the SLA in place, the quality is satisfactory and the deadlines met. Contribute to the RISK ORM deliverables as per the Beneficiary requirements and ensure appropriate documentation across RCSA, LOD2 controls on LOD1, transversal topics, projects and initiatives. Review KPIs as per the defined terms adhering to the SLA requirements with periodic stakeholder meetings and mutualize activities across defined activities. Stakeholder, Team and People Management Prioritize in the continuous improvement of the team's functioning, homogenizing and disseminating good practices; Managing the team's budget; Ensuring transversality and sharing of expertise and knowledge within the team; Hands on and remain updated on Group policies and procedures and therefore share expertise on high stake-concerns and/or dealing with complex issues; Representing the team, when appropriate, within cross-functional Group projects Key stakeholder management with Business, OPC, Regional and Central RISK ORM management. Drive positive Team culture aligned to BNP Paribas value system. Timely recruitment, new joiners training and define objectives aligned to RISK ORM mission statements. Continuous improvement, skill development, promote high performance value system and feedback culture and teams development aligned to Group strategy. Conflict management with the team and stakeholders considering the overall strategy, priorities. Competencies (Technical / Behavioural) Background: In-depth banking products and processes knowledge Sensitivity and/or experience in operational risk Implementation of Risk governance or its equivalent environment good analytical skills, solid critical mind, capacity to synthesize / Simplify Soft skills: Strong Analytical skills & synthesis ability Strong interpersonal skills (communication, negotiation, influencing skills, teamwork) including collaborative mindset Excellent project management skills, resource management, planning and anticipation Excellent verbal and written communication skills English: fluent speaking, reading and writing (proficient) Specific Qualifications Required Tertiary-level qualification essential with CA/CPA qualifications desirable. At least 10 years of relevant experience in risk management, control function, preferably with relevant exposure to consulting or audit background. Prior experience or practical understanding in previous roles may include but not limited to Front/Middle/Back Office, Operations or Functional role(s). Knowledge and experience in financial services, including end-to-end process flows and associate risks and controls. Robust knowledge of banking products in the area of Corporate & Institutional Banking is an advantage.

Position Purpose The Transversal Operations Permanent Controller is part of the Regional non-financial risk management framework (LOD1) and works directly with regional management to deliver, monitor and provide reports about key non[1]financial risks elements in line with the governance. It is a pivotal role which allows to oversee different Corporate Banking & Advisory activities (Front to Back) in 12 APAC territories. The position also covers the identification, management or supporting of transformation projects in support of non-financial risk management excellence in alignment with the Group's ambition to be a trusted and reliable partner for our clients and stakeholders. The mandate further extends to the maintenance and support of BAU transversal operational risk management (TORM) framework. Responsibilities: Monitoring The monitoring role aims at defining, analyzing and maintaining oversight on different key performance and risks indicators. It fully supports the first line of defense and regional management in identifying dynamically areas of risks where efforts need to be prioritized, while maintaining a transversal view of the robustness and sustainability of our control framework for a large scope of activities and territories. Monitoring tasks can include (but are not limited to): - Weekly Recommendations & Permanent Control Actions monitoring - Dynamic Residual Risk monitoring - Risk Control Self-Assessment (RCSA) and/or Control Plan deployment monitoring - Procedure update monitoring To support further progress in delivering the remediation project to the new GCL for 1LOD and notably - To support the execution of ex-post testing on some controls as necessary - To support the manual aggregation of the rating of controls - To support the manual consolidation of the results, the building/monitoring of dashboards (including exchanges with central teams), and the reporting Reporting The reporting role aims at producing clear reports to regional management following the performance of monitoring actions. It is also in the transversal officer responsibility to analyze the monitoring actions results and, on that basis, identify risks that may require escalation or close follow-up from regional management. Governance The transversal officer is a key contributor to the Regional non-financial risk governance in place. Indeed, reports produced following execution of monitoring tasks by the officer are then presented in regular committees including local and Regional management. Also, transversal OPC plays a key coordination role in the consolidation and preparation of different committees. Note that on an ad-hoc basis, transversal OPC role can be extended to other transversal tasks under the remit of APAC Conduct & Control Officer (for instance participation to projects may be required in the context of remediation or transformation program). Technical & Behavioral Competencies Good understanding of Operational Risks Management Framework Well-structured analytical skills Apply analytical and critical thinking to a problem in order to find a solution Confident enough to propose elements part of building a solution Show a continuous improvement & problem-solving mindset, taking the initiative to propose ideas to the management to solve problems identified Strong team player Ability to drive a discussion with regional management. Very strong reporting skills both orally and in written (previous experience with designing reporting solutions required) With strong Excel skills to support the necessary analysis and reporting efforts Able to organize agenda and meeting Able to coordinate and lead meetings Able to write minutes and follow-up Comfortable with working within tight deadlines Act with transparency, integrity and responsibility] Client focused Provide excellence in term of quality of deliveries and quality of service Specific Qualifications (if required) With consulting experience in banking and project management capabilities Bachelors degree or masters Degree At least 7 years of experience in the banking industry Experience in multi-cultural environment Fluent in English is a must, speaking one Asian language is a plus Skills Referential Behavioural Skills : (Please select up to 4 skills) Ability to collaborate / Teamwork Attention to detail / rigor Ability to deliver / Results driven Communication skills - oral & written Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to understand, explain and support change Key Performance Indicators Setting Ability to develop and adapt a process .

About Us At ANZ, we're applying new ways technology and data can be harnessed as we work towards a common goal: to improve the financial wellbeing and sustainability of our millions of customers, About The Role As a Analyst Risk Reporting in our Technology Business Management, you will bring prior risk management experience to support the Group Technology Risk Governance and Reporting squad to ensure that risks associated with day-to-day operations are managed, governed and reported on appropriately to protect shareholders, customers and bankers, Banking is changing and were changing with it, giving our people great opportunities to try new things, learn and grow Whatever your role at ANZ, youll be building your future, while helping to build ours, Role Type:Permanent Role Location:Bengaluru What will your day look like As a Risk Reporting and Data Analyst, you will: Support and assist the Governance, Reporting & Regulatory squad members to deliver priorities, Engage key stakeholders across the division to understand key risk information, Develop sound governance processes to ensure appropriate risk assurance exists, Deliver risk data including controls, assessment results, RAS metrics, emerging risks, resiliency and security risks, for input to reporting, Generate insightful, actionable, appropriate, and clear reports and metrics to support strategic decision-making, Organise meetings, prepare documentation, maintain records, and provide support for committees to ensure they are operating in accordance with their terms of reference/ charter, Ensure deliverables align with and support the governance of ANZs risk management policies, frameworks, and standards, whilst ensuring compliance with regulatory requirements, Drive change and an increased awareness of risk management across the division, Contribute to the continuous improvement of squad deliverables and encourage best practices around quality, What will you bring To grow and be successful in this role, you will ideally bring the following: Prior experience in risk management role, Excellent written and verbal communication skills, Highly proficient in Excel, Word and Powerpoint, Ability to analyse large data sets e-g controls, treatments, risks, events, incidents and audit issues, etc with a high level of attention to detail and to use the data to create meaningful, actionable insights for consumption by executives, the Boards, sub-committees and regulators, Good understanding of regulation such as CPS220, 234, 230, etc and consequent obligations management, Excellent planning, coordinating, collaboration and prioritisation skills, Strong organisational skills and high attention to detail, Good interpersonal and relationship building skills, Proactive by nature with the ability to help shape and uplift our data, reporting and insights capability, Youre not expected to have 100% of these skills At ANZ a growth mindset is at the heart of our culture, so if you have most of these things in your toolbox, wed love to hear from you, Job Posting End Date 05/06/2025 , 11 59pm, (Melbourne Australia)

FinBox: Where Fintech Meets Fun! Welcome to FinBox, the buzzing hive of tech innovation and creativity! Since our inception in 2017, FinBox has built some of the most advanced technologies in the financial services space that help lenders like Banks, NBFCs and large enterprises build and launch credit products within a matter of days, not months or years FinBox is a Series A funded company which is expanding globally with offices in India, Vietnam, Indonesia and Philippines, Our vision is to build the best-in-class infrastructure for lending products and help Banks & Financial Services companies across the world scale and launch credit programs that set a new standard in the era of digital finance So far, weve helped our customers disburse Billions of Dollars in credit across unsecured and secured credit including personal loans, working capital loans, business loans, mortgage and education loans FinBox solutions are already being used by over 100+ companies to deliver credit to over 5 million customers every month, Why Should You Be a FinBoxer Innovative Environment: At FinBox, we foster a culture of creativity and experimentation, encouraging our team to push the boundaries of what's possible in fintech, Impactful Work: Your contributions will directly impact the lives of millions, helping to provide fair and accessible credit to individuals and businesses alike, Growth Opportunities: We are a Series A funded startup and have ample opportunities for growth, professional development and career advancement, Collaborative Culture: Join a diverse and inclusive team of experts who are passionate about making a difference and supporting one another, Whos a Great FinBoxer At FinBox, were on the lookout for exceptional folks who are all about innovation and impact If youre excited to shake things up in the banking & financial services world, keep reading! Creative Thinkers: If your brain is always bubbling with out-of-the-box ideas and wild solutions, youre our kind of person We love disruptors who challenge the norm and bring fresh perspectives to the table, Customer Heroes: Our customers are our champions, and we need heroes who can understand their needs, deliver magical experiences, and go above and beyond to keep them happy, Team Players: We believe in the power of ?we ? If you thrive in a collaborative environment, value different viewpoints, and enjoy being part of a spirited, supportive team, youll fit right in, Role Overview Leadership role managing regulatory compliance, InfoSec audits, risk governance, privacy implementation, and third-party due diligence across India, Vietnam, and the Philippines, Key Responsibilities Audit Ownership & Execution Plan, coordinate, and execute 15+ internal and external audits annually This includes ISO, SOC 2, client audits, and Specified User reviews Own audit lifecycle management?from kickoff to closure ensuring evidence readiness and zero non-conformities, Risk Governance & Framework Design Establish and maintain risk registers, compliance control libraries, and issue remediation trackers Conduct periodic governance reviews in collaboration with the CISO and cross-functional teams to address gaps and improve maturity, Cross-functional Legal Collaboration Partner with the Legal team on regulatory submissions, data sharing agreements, privacy clauses, outsourcing documentation, and customer/vendor contract reviews Act as a compliance advisor in cross-functional engagements involving product, partnerships, and legal risk, Due Diligence & Partner Compliance Lead regulatory due diligence for onboarding and periodic reviews of fintechs, NBFCs, and CICs Define go/no-go criteria based on financial, technical, and regulatory risks Provide documentation support during client assessments, Privacy & Data Protection Compliance Implement privacy-by-design principles across systems and workflows Lead DPDP readiness, including data mapping, consent management, and deletion SOPs Ensure compliance across India, Vietnam, and the Philippines, Vendor Risk & Third-party Oversight Manage the end-to-end lifecycle of vendor risk assessments Define onboarding checklists, review DR/BCP capabilities, monitor SLAs, and coordinate with InfoSec, Legal, and Tech for control implementation and ongoing monitoring, Mentoring & Engagement Support Act as a mentor to team members by guiding them through live compliance engagements, audits, and documentation processes Share subject matter insights, review outputs, and support their learning journey through contextual feedback and scenario-based coaching, Documentation & Audit Trail Management Maintain structured repositories of all compliance policies, trackers, audit findings, evidence logs, and issue closures in Google Drive, Confluence, and Sprinto Ensure accuracy, version control, and easy retrievability, Strategic Reporting & Compliance Insights Regularly update the CISO and senior leadership on compliance posture, audit outcomes, risk trends, and regulatory changes Contribute to board-level reports, Specified User submissions, and strategic risk planning,

Job Title: Chief Risk Officer (CRO) Location: Ahmedabad Reporting To: Chief Executive Officer (CEO) / Board of Directors Employment Type: Full-Time About the Role We are seeking an experienced Chief Risk Officer (CRO) to lead our organizations risk management strategy, ensuring robust governance and regulatory compliance. The CRO will play a pivotal role in safeguarding the firm’s operations, reputation, and assets by establishing and overseeing a comprehensive risk management framework. This role is independent from the investment function (CIO) and reports directly to the CEO and Board of Directors. Key Responsibilities Risk Framework Implementation Implement and maintain an enterprise-wide risk management framework aligned with regulatory standards and industry best practices. Governance & Oversight Review and define the specific risk management responsibilities of senior leadership including the CEO, CIO, CXOs, and Fund Managers. Risk Reporting Mechanism Establish a formal risk reporting process to provide quarterly updates to the Board of AMC, Trustees, and Risk Management Committees (RMCs) covering: Key risk metrics Escalation of material risk incidents Timely implementation of corrective actions Independent Risk Assessment Ensure an unbiased evaluation of risks and risk reporting to key governance committees and the CEO, independent of the investment function. CEO-Level Reporting Develop a monthly reporting structure to keep the CEO informed of emerging risks and mitigation strategies. Daily Risk Operations Oversee daily risk management and reporting activities, including identifying, monitoring, and addressing deviations in line with a Board-approved Delegation of Powers (DoP). Corrective Action Oversight Monitor and initiate corrective measures at the Fund Manager, CIO, and CEO levels as needed, ensuring alignment with the firm’s risk appetite. Regulatory & Board Communication Communicate major risk findings, incidents, and required corrective actions to the Board of AMC, Trustees, and RMCs. Provide regular updates on the closure or progress of risk mitigation recommendations. Key Requirements Education: Postgraduate degree in Risk Management, Finance, Economics, Business Administration, or related field. Relevant certifications (e.g., FRM, PRM, CFA) are a plus. Experience: Minimum 3-5 years of experience in financial services, preferably in mutual fund/asset management industry, with at least 5 years in a senior risk leadership role. Skills and Competencies: Strong understanding of SEBI regulations and industry compliance requirements Deep knowledge of investment and operational risk frameworks Excellent analytical, strategic, and communication skills High integrity and strong independent judgment Proven leadership and stakeholder management capability.

Join us as a Business Controls Partner, Market Abuse, VP If you have a risk management or regulatory background and are looking for a new challenge, this could be the ideal role for you You ll partner with the business and Risk function to identify, assess and manage the risks within the agreed risk appetite, using our risk framework to inspire a team of business and customer control partners, and make sure that the team objectives are achieved Hone your project management and people leadership skills in this fast-paced and varied role, with an emphasis on career progression We re offering this role at vice president level What youll do In this key role, you ll have an opportunity to make a vital contribution to driving a generative culture of risk awareness and recommend solutions to operations risk issues within the businesses. You ll strengthen the level of ownership within the business, identifying and calling out areas of weakness and sharing best practices. We ll look to you to deliver a robust risk governance framework in line with the operational risk handbook, as well as supporting and delivering relevant risk activity to build credible and realistic plans to move and sustain a control environment certification rating within risk appetite. Day-to-day, you ll be: Escalating emerging risks in a timely manner, making sure actions are quickly defined and owned Developing and delivering a strong risk awareness across the business, contributing to the prioritisation, design and implementation of the operational risk principles into the business Implementing a robust governance framework that engages all relevant stakeholders to enable effective decision making and make sure that all aspects of risk management are delivered Supporting primary accountable risk owners and responsible risk leads in their identification and assessment of the policy framework Coaching and supporting colleagues across the bank to improve understanding and embed a culture of intelligent risk taking Educating teams on the policy framework and the roles and responsibilities framework Creating a culture of continuous improvement, increasing efficiency and productivity through great people leadership, coaching, engagement and development of skills The skills youll need We re looking for a highly skilled leader with experience of Policy Framework. With a strong understanding of our operating processes, you ll need general and project management skills involving complex people, process and technology issues, along with a proven understanding and practical application of risk management principles. You ll also need well developed knowledge of our businesses and associated products, processes and technologies. On top of this, you ll bring: Strong senior stakeholder management skills A well-developed network of contacts with a clear track record of delivery Influencing and conflict resolution skills, with the ability to view the impact of issues from a wider or macro perspective The ability to think creatively when resolving problems and identify alternatives where established procedures may not exist The ability to assess a mid-market mark with excellent Excel skills Basic product knowledge and associated nomenclature such as knowing the difference between a straddle and a strangle or an FX Swap to a XCCY Swap Hours 45 Job Posting Closing Date: 23/06/2025

Join us as a Business Controls Partner, Trade Reconstruction, VP If you have a risk management or regulatory background and are looking for a new challenge, this could be the ideal role for you You ll partner with the business and Risk function to identify, assess and manage the risks within the agreed risk appetite, using our risk framework to inspire a team of business and customer control partners, and make sure that the team objectives are achieved Hone your project management and people leadership skills in this fast-paced and varied role, with an emphasis on career progression We re offering this role at vice president level What youll do In this key role, you ll have an opportunity to make a vital contribution to driving a generative culture of risk awareness and recommend solutions to operations risk issues within the businesses. You ll strengthen the level of ownership within the business, identifying and calling out areas of weakness and sharing best practices. We ll look to you to deliver a robust risk governance framework in line with the operational risk handbook, as well as supporting and delivering relevant risk activity to build credible and realistic plans to move and sustain a control environment certification rating within risk appetite. Day-to-day, you ll be: Escalating emerging risks in a timely manner, making sure actions are quickly defined and owned Developing and delivering a strong risk awareness across the business, contributing to the prioritisation, design and implementation of the operational risk principles into the business Implementing a robust governance framework that engages all relevant stakeholders to enable effective decision making and make sure that all aspects of risk management are delivered Supporting primary accountable risk owners and responsible risk leads in their identification and assessment of the policy framework Coaching and supporting colleagues across the bank to improve understanding and embed a culture of intelligent risk taking Educating teams on the policy framework and the roles and responsibilities framework Creating a culture of continuous improvement, increasing efficiency and productivity through great people leadership, coaching, engagement and development of skills The skills youll need We re looking for a highly skilled leader with experience of Policy Framework. With a strong understanding of our operating processes, you ll need general and project management skills involving complex people, process and technology issues, along with a proven understanding and practical application of risk management principles. You ll also need well developed knowledge of our businesses and associated products, processes and technologies. On top of this, you ll bring: Strong senior stakeholder management skills A well-developed network of contacts with a clear track record of delivery Influencing and conflict resolution skills, with the ability to view the impact of issues from a wider or macro perspective The ability to think creatively when resolving problems and identify alternatives where established procedures may not exist The ability to assess a mid-market mark with excellent Excel skills Basic product knowledge and associated nomenclature such as knowing the difference between a straddle and a strangle or an FX Swap to a XCCY Swap Hours 45 Job Posting Closing Date: 23/06/2025

We are seeking a highly experienced and strategic leader to join our FCR&C division as Vice President Financial Crime Risk and Control - Technology Risk Strategy & Controls . This role is critical in shaping the risk and control landscape across our technology platforms, with a strong emphasis on Python-based automation , audit readiness , and strategic risk governance . The ideal candidate will bring a blend of technical acumen , regulatory insight , and banking domain expertise to drive innovation and resilience in a complex, fast-paced environment. Your key responsibilities Strategic Risk Leadership Define and lead the technology risk strategy for Financial Crime Risk and Compliance (FCR&C) division, aligning with enterprise risk appetite and regulatory expectations. Advise senior Leadership on emerging technology risks, regulatory developments (e.g., Basel III, EMIR, GwG, ECB), and control enhancements. Drive strategic initiatives to embed risk intelligence into digital transformation and innovation programs. Technology Enablement & Automation Lead the development of Python-based tools and analytics to automate risk assessments, control testing, and audit support. Oversee the integration of advanced analytics and AI/ML into risk monitoring and reporting frameworks. Collaborate with engineering and data teams to ensure secure, scalable, and compliant technology solutions. Audit, Controls & Regulatory Compliance Own the design and execution of IT control frameworks across trading platforms, payment systems, and client onboarding technologies. Partner with internal audit, DCO and compliance to ensure readiness for regulatory reviews and external audits. Monitor and assess control effectiveness across front-to-back banking processes, including trade lifecycle, credit risk, and operational risk. Review internal processes to confirm all financial crime risks have been appropriately identified and documented. Confirm relevant controls or risk mitigants are in place to manage all financial crime risks within internal processes. Perform design and/or operating effectiveness testing on controls and mitigants. Conduct annual assessment of controls within FCR&C to demonstrate they are operating effectively. Identify, analyse and review operational readiness for any change-related activities. Define the requirements e.g. for the standardisation of processes/policies, translating the required changes for an operational environment and overview effective implementation. Assess risks that are responsible for the mitigating and protecting the Banks reputation. Stakeholder Engagement & Governance Present testing results, risk insights, control metrics, and strategic recommendations to Leadership team Build strong partnerships with front office, operations, DCO, compliance, and technology teams to foster a risk-aware culture. Lead governance forums and working groups focused on technology risk and control transformation. Your skills and experience Qualifications: Bachelors or Masters degree in Computer Science, Information Systems, Finance, or a related field. 14+ years of experience in technology risk, audit, or compliance within investment or corporate banking. Strong proficiency in Python and experience leading automation or analytics initiatives in a regulated environment. Deep understanding of banking products, trading systems, and regulatory frameworks (e.g., SOX, Basel, MiFID II, DORA). Proven leadership in cross-functional teams and executive-level stakeholder management. Experience with testing the design and operating effectiveness of controls and remediating any identified control gaps. Analytical skills and attention to detail, with the ability to think laterally around issues, proposing solutions where required. Effective communication, organisation, prioritisation and interpersonal skills Ability to work to high standards and under strong time constraints. Preferred Certifications: Python/Data Science certifications MBA or executive leadership training (preferred) CISA, CRISC, or equivalent (desirable)

Branch Banking is the liability business for Deutsche Bank present in 17 locations across India . This carters to a wide variety of population through its distinct channels like Personal banking, Private Banking and Business Banking. The primary objective is to enhance the value of the savings account portfolio through cross-sell, leading to increase in fee income, to add to that ensure acquisition of new clientele. Your key responsibilities Acquisition Assist Head RM in executing successful micro-events for acquisition of new clients. Acquire new accounts from group companies / family of existing customers. Acquire new accounts from referrals from existing customers Relationship Building / Deepening / Cross Sell Ensure consistent growth of the Savings portfolio. Work closely with the Head RM to establish synergies for maximum penetration of Investment & Insurance sales to new customers along with deepening into the book i.e. AUM. Build a robust momentum with regard to the third party distribution (insurance, auto loans, and mortgages) and fee income to scale up the client portfolio growth, in line with the set targets. Ensure Risk Profiling is done for each customer. Implement customer contact programs to ensure their share of wallet with the bank increases. Close monitoring of average revenue per customer. Retention Ensure top class service delivery to clients to be in line with the best in the industry. Monitor high net worth accounts closely to ensure that customers continue regular use the account and grow balances. Work towards reactivating accounts which have stopped transacting or depleted in balances. Assist in resolving service hurdles to create a delight situation for customers. Risk Management & Governance Ensure awareness and adherence with the Know Your Customer policy, Anti Money Laundering Policy, Mis-selling Policy, Information Protection Policy, Operational Risk,Code of Conduct and other laid down compliance norms of the bank as stipulated from time to time. Provide regular feedback on the changing customer needs to the Product team and Service Quality team. Optimum usage of db Financial Planning Tool. Any suspicious transaction to be immediately reported to the Area Manager. Promotion of Alternate Channels. Increase customer contact ability by capturing email address and mobile number. Your skills and experience The candidate should have experience in servicing or sourcing clients of 20 lacs+ relationship. Applicants are preferred from Banking / Premium club membership / (Paid) High End Credit card sales background. Candidate should have excellent communication in English and well groomed. Minimum qualificationrequired is Graduation. Minimum Experience should be 6-12 Years in relevant field.

Job Summary Join our team as an Infra. Technology Specialist where you will leverage your expertise in vulnerability management to enhance our IT infrastructure. With a hybrid work model and day shifts you will collaborate with cross-functional teams to ensure robust security measures. Your contributions will directly impact our companys mission to provide secure and reliable technology solutions. Responsibilities Oversee the implementation of vulnerability management processes to ensure the security of IT infrastructure. Collaborate with cross-functional teams to identify and mitigate potential security threats. Provide expert guidance on best practices for vulnerability assessment and remediation. Develop and maintain documentation for vulnerability management procedures and protocols. Conduct regular security audits and assessments to identify areas for improvement. Implement automated tools and technologies to streamline vulnerability management processes. Monitor and analyze security alerts to proactively address potential risks. Coordinate with IT teams to ensure timely patch management and system updates. Evaluate and recommend security solutions to enhance infrastructure resilience. Train and mentor team members on vulnerability management techniques and tools. Report on security metrics and trends to inform strategic decision-making. Ensure compliance with industry standards and regulations related to IT security. Contribute to the development of security policies and procedures to safeguard company assets. Qualifications Possess a strong background in vulnerability management with at least 8 years of experience. Demonstrate proficiency in using vulnerability assessment tools and technologies. Exhibit excellent problem-solving skills and attention to detail. Have a solid understanding of IT infrastructure and security principles. Show ability to work collaboratively in a hybrid work environment. Display strong communication skills to effectively convey technical information. Hold a relevant certification such as Certified Information Systems Security Professional (CISSP). Certifications Required Certified Information Systems Security Professional (CISSP)

Dear Candidate, Greetings. We are hiring for the role of Biso Helius Technologies Hyderabad. Work mode – Work from office Project – Singlife Exp – 10 to 15 years Please find the below JD for your reference. Role: BISO Work Location: Hyderabad (ODC) Key Responsibilities Focuses on Core BISO activities: Conduct Information Security Business Impact Assessments (ISBIA) for Projects, Applications, and Third-Party Outsourcing arrangements, aligning with Singlife Standards. Collaborate with Technology and Business units to evaluate the impact of control deficiencies. Lead the implementation of IS standards at the business level, ensuring alignment of procedures and practices with established standards. Collaborate in creating Risk Acceptances (RAs), Risk Exceptions (REs), and Corrective Action Plans (CAPs) using appropriate tools. Engage with Security Incident Response Teams to guide the resolution and closure of incidents, offering proactive recommendations. Generate periodic IS risk management reports, highlighting critical issues and proposing corrective action plans. Ensure adherence to IS standards and best practices across diverse disciplines. Support the business during audit reviews and regulatory inspections related to IS matters. Maintain vigilant oversight of IS programs, encompassing programs, policies, and associated reporting within the business landscape. Collaborate with business units to rectify non-compliance in processes, applications, and outsourcing activities. 1. 2. Act as a Business Partner Regularly communicate and interact with Management and Employees, enhancing understanding of IS-related programs, policies, and standards. Leverage the ISO network to share resources, extract best practices, and enhance operational efficiency. Validate compliance with security controls within business contracts. Evaluate the alignment of IS processes with business needs, particularly concerning software and internet usage. Conduct Information and Cyber Security Awareness training to fortify organizational preparedness. Partner with application managers or the Technology Information Security Officer (TISO) to address specific technical requirements. Stay relevant to evolving cybersecurity regulations (MAS, CSA, GIA, LIA) to provide subject matter expert feedback. Assess the impact of new and updated regulations promptly by partnering with the ISO, Technology & Operations community. 3. Other Requirements Demonstrate skill in delivering compelling presentations and managing complex programs. Display exceptional aptitude in consulting, problem-solving, and analytical capabilities. Exhibit a proactive, assertive, service-oriented demeanour while effectively functioning as a cohesive team player. Demonstrate the ability to manage concurrent tasks and prioritize effectively, even in conflicting timelines. Key Decisions within the Role Be the gatekeeper of the IS business impact assessments (ISBIA) processes and ensure applications within Singlife adhere to IS standards. Team Direct and indirect accountability for Information Security Officers Requirements Experience Minimum 10 years of experience in Information security. In areas such as security governance, risk management, application security design, security project management or security operation. • Professional Certifications CISSP, CISM, CISA, SANS, Cloud would be preferred. Education Bachelor’s degree in IT, Engineering or equivalent Skill Matirx- Skill Candidate's self- assessment (Score 1-5) Primary: InfoSec experience Secondary: Risk/Governance/Assurance framework Experience in conducting Infosec Training Excellent Communication/Presentation skills Infosec Certifications Primary: Cybersecurity regulations Secondary: Creation of Risk Acceptance/Risk Exceptions/CAPs Monetary Authority of Singapore (MAS) regulations Awareness of Security Control . Compliance Security Audits . Please revert with update profile if you find it interesting. Feel free to reach out for any queries. Role & responsibilities Preferred candidate profile

Some careers have more impact than others. We are currently seeking an experienced professional to join our team in the role of Assistant Vice President, Model Risk Governance and Stewardship Principal responsibilities Supporting the setting of the firm s model risk policies and procedures. Supporting reviews to ensure policy is implemented effectively across businesses and functions. Producing and providing Model Risk Reporting on a regular basis. Supporting the development of appropriate training materials. Suggest enhancements to systems, tooling and/or working practices to improve efficiency. Prepare the related model risk governance reporting. Support the development of appropriate Model Risk Governance procedures, tools and management information. Work with colleagues in 1LOD(Line of Defense), 2LOD and 3LOD to deliver the broader set of Global Model Risk Governance deliverables. Contribute to management, regulatory, and external confidence in all models used across the group. Support the management of model risk across a large complex banking group. Support model risk whilst significant transformational activity is being implemented, both regionally and globally. Operate within a changing and rapidly developing regulatory environment. Continually support HSBCs approach to conduct and cultivate a positive risk aware culture, which is designed to ensure we deliver fair outcomes for our customers and do not disrupt the orderly and transparent operation of financial markets. Requirements Experience of model risk management, governance and/or model development / validation. Understanding of Risk Management Framework, Risk Controls is mandatory Experience of local regulators and regulations would be an advantage. Some knowledge and expertise of local market and HSBC s different business lines is preferable. 5-10 years of professional experience in risk management would be preferable. Experience to be able to identify and implement process improvements. Ability to develop strong networks with key stakeholders at all points in a matrix structure, creating an ability to execute task at hand with minimum conflict. Providing expert advice, robust challenge and managing risk and controls Strong written and oral communication skills. Attention to detail. Team-oriented mentality combined with ability to complete tasks independently to a high-quality standard. You ll achieve more at HSBC HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.

Job Overview: We are seeking a skilled and experienced IT Infrastructure and Governance, Risk, and Compliance (GRC) Specialist to join our team. The ideal candidate will have a proven track record in managing and optimizing IT infrastructure, Network while ensuring compliance with industry regulations and best practices. Person will be responsible for maintaining secure and efficient IT systems, as well as ensuring that governance, risk management, and compliance processes are effectively integrated within the organizations operations. Job Title: IT Infrastructure and GRC (Governance, Risk, and Compliance) Specialist Location: Gurgaon Job Type: Full-Time Experience Required: 5+ Years Key Responsibilities: IT Infrastructure Management: o Oversee the design, implementation, and maintenance of the organizations IT infrastructure, including servers, networks, storage, and On-prim systems. o Manage and optimize the performance, scalability, and security of IT systems. o Ensure high availability and disaster recovery plans are in place and tested regularly. o Troubleshoot and resolve infrastructure-related issues, ensuring minimal downtime. o Collaborate with cross-functional teams to assess and implement new infrastructure solutions. Governance, Risk, and Compliance (GRC) Management: Develop and implement GRC policies, processes, and controls to ensure adherence to regulatory requirements and industry standards (e.g., GDPR, HIPAA, ISO 27001). Conduct regular risk assessments and audits to identify potential vulnerabilities in IT systems and infrastructure. ¢ Assist in the creation of risk management frameworks and compliance strategies. ¢ Ensure that the organizations IT infrastructure aligns with compliance requirements and mitigates any risks. ¢ Maintain up-to-date knowledge of evolving GRC regulations and standards. Security & Risk Management: ¢ Work closely with the security team to implement robust security measures, including firewalls, intrusion detection systems, and encryption protocols. ¢ Monitor and report on compliance and risk levels within the IT infrastructure, making recommendations for improvements. ¢ Lead incident response and recovery efforts in case of security breaches or compliance violations. Documentation & Reporting: ¢ Maintain detailed documentation of IT infrastructure configurations, system changes, and GRC compliance activities. ¢ Prepare regular reports on IT infrastructure performance, risk assessments, compliance status, and incident management for senior management. ¢ Assist with audits by providing necessary documentation and evidence of compliance. Collaboration and Training: ¢ Collaborate with IT teams, legal, compliance, and business units to ensure compliance initiatives are integrated into all stages of IT project development. ¢ Provide training and guidance to staff on best practices for IT security, risk management, and compliance. ¢ Work with external auditors and consultants as needed for compliance reviews and assessments. Qualifications: ¢ Bachelors degree in information technology, Computer Science, Cybersecurity, or a related field. ¢ A minimum of 8 years of experience in IT infrastructure management, with a focus on governance, risk management, and compliance (GRC). ¢ Proven experience with GRC tools and frameworks, including risk assessments, audits, and regulatory compliance. ¢ Strong knowledge of IT infrastructure components (e.g., servers, networks, storage, on-prim services). ¢ Familiarity with industry standards and regulations (e.g., ISO 27001 etc). ¢ Solid understanding of security principles, firewalls, VPNs, and encryption technologies. ¢ Excellent problem-solving skills and ability to troubleshoot complex infrastructure issues. ¢ Strong communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical teams.

Location: Bangalore or Hyderabad Senior Digital Risk Advisor - DRG Join a team of digital risk governance and controls professionals helping Swiss Re to fulfil its mission in making the world more resilient. As a Senior Digital Risk Advisor, you will have first-line responsibility for ensuring an effective and efficient risk and control framework is implemented across the different IT domains at Swiss Re. Whats more, youll be working in a hybrid setup, perfectly balancing work from home and the office premises. About the team The Digital Risk Governance Controls team is a key part of Swiss Res Security Team, focused on defining and managing risks related to digital topics. Were looking for an experienced and highly motivated expert who can define and develop an efficient first-line risk and control framework that supports a strong risk-aware culture within the company. In your role, you will Actively manage the implementation of the digital and technology risk framework Maintain oversight o n the quality of internal measures implemented to address digital risk, ensuring controls, processes and standards are appropriately designed and operating effectively Ensure compliance with rules, regulations, and policies - making sure we meet our risk appetite and driving corrective actions where opportunities exist Actively collaborate with key stakeholders across the three lines of defense to automate, measure performance and continuously improve our risk position U nderstand complex concepts and identif y solutions to problems Be someone who believes in continuous innovation, is curious and relentless in finding a better way every day Your qualifications A track record of successful delivery in IT risk and control -related roles, such as IT Governance, IT audit, or digital risk management Practical knowledge of external IT good practices - particularly NIST - but also others , such as ISO and COBIT Qualified in an appropriate discipline such as CISA, CGEIT, CRISC Good teamwork and strong collaboration as well as a willingness to share knowledge and evolve within and across different teams The ability to effectively communicate with a broad spectrum of stakeholders - from s enior m anage rs to IT engineers , developers and operations staff Be curious, proactive, result-oriented and confident in decision making at speed Passion, drive and a belief in the value of digital risk management as an enabler of business performance Fluency in spoken and written English About Swiss Re . If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience. Keywords: Reference Code: 134243

Location: Bangalore or Hyderabad Digital Risk Advisor Join a team of digital risk governance and controls professionals helping Swiss Re to fulfil its mission in making the world more resilient. As a Senior Digital Risk Advisor, you will be responsible for the first-line digital technology operations risk and control activities - ensuring risks are identified, controls applied, and performance is monitored, measured, and reported to our technology and business leaders. About the team The Digital Risk Governance Controls team is a key part of Swiss Res Security Team, focused on defining and managing risks related to digital topics. Were looking for an experienced and highly motivated expert who will help to drive the companys risk culture. In your role, you will Be part of a team of digital risk experts supporting Applications and Business stakeholders with applying digital risk governance principles and standards Actively contribute to the implementation of the digital risk framework as the trusted digital risk partner Ensure IT threats and risks are understood, issues handled timely, and IT controls designed and operating effectively Embed controls into operational procedures by collaborating with our digital technology teams to automate, measure performance, and continuously improve our risk position Build operational transparency with continuous monitoring and assessment of controls so that we meet our risk appetite and drive corrective actions where needed Be someone who believes in continuous innovation, is curious and adamant in finding a better way every day Your qualifications Nobody is perfect and meets 100% of our requirements. If you, however, meet some of the criteria below and are curious about the world of risk and control activities, well be more than happy to meet you! First experience s in IT risk and control-related roles, such as IT Governance, IT audit, or digital risk management CISA, CGEIT, CRISC or similar qualifications are an advantage Good teamwork and strong collaboration as well as a willingness to share knowledge and evolve within the team and across teams Capability to continuously build and maintain a strong collaborative network within the IT domains Be curious, proactive, result-oriented and confident in decision-making at speed Passion, drive and a belief in the value of digital risk management as an enabler of business performance Fluency in spoken and written English About Swiss Re . If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience. Keywords: Reference Code: 134238

Skills Required : ISO 27001, NIST, PCI

KEY RESPONSIBILITIES Governance: Develop and maintain cybersecurity policies, standards, and procedures. Collaborate with leadership to align cybersecurity initiatives with business objectives. Lead or support security awareness and training initiatives. Risk Management: Identify, assess, and monitor cybersecurity risks across the organization. Conduct risk assessments and gap analyses on systems, applications, and vendors. Work with stakeholders to implement risk mitigation strategies and track remediation activities. Compliance: Ensure compliance with regulatory and industry standards such as ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI-DSS, etc. Prepare and support internal and external audits and security assessments. Maintain documentation of compliance controls and audit evidence. Reporting & Documentation: Produce risk reports and metrics for senior management and stakeholders. Maintain accurate records of compliance activities and risk treatment plans. Track and report on the status of cybersecurity initiatives and issues. Required Skills and Qualifications: Bachelors degree in Cybersecurity, Information technology, or a related field. 2-3+ years of experience in information security governance, risk, or compliance. Strong knowledge of GRC frameworks and regulatory requirements. Familiarity with risk assessment methodologies and tools. Excellent analytical, organizational, and communication skills. Preferred Qualifications: Certifications such as ISO 27001 Lead Implementer, or similar. Experience with GRC tools such as RSA Archer, ServiceNow GRC..etc Understanding of third-party risk management and vendor assessments. CANDIDATES WHO CAN JOIN IMMEDIATELY ARE HIGHLY PREFERRED.

We are seeking a ServiceNow GRC Specialist to design, implement, and manage Governance, Risk, and Compliance (GRC) solutions within the ServiceNow platform. The ideal candidate will work closely with stakeholders to enhance risk management, compliance automation, and policy frameworks using ServiceNow GRC modules. Key Responsibilities : ServiceNow GRC Implementation & Configuration : Design and implement GRC modules (Risk Management, Audit, Policy & Compliance, Vendor Risk, etc.). Configure workflows, forms, and dashboards to optimize risk and compliance processes. Integrate ServiceNow GRC with other enterprise systems. Strong Scripting hands-on is a must Risk & Compliance Management : Automate compliance monitoring for frameworks like ISO 27001, NIST, GDPR, SOX, and HIPAA. Conduct risk assessments and provide solutions for mitigation. Implement continuous control monitoring for compliance adherence. Stakeholder Collaboration : Work with CISOs, risk managers, and compliance teams to align GRC strategies. Provide training and documentation to ensure successful adoption. Support audits and regulatory reporting using ServiceNow dashboards. Customization & Development : Utilize ServiceNow scripting (JavaScript, Glide API) for advanced configurations. Develop custom applications and enhancements based on business needs. Support & Maintenance : Troubleshoot issues and ensure smooth operation of the GRC platform. Stay updated with ServiceNow releases and implement upgrades. Required Qualifications & Experience : Experience : 4-10 years in ServiceNow GRC/IRM implementation and support. Technical Skills : ServiceNow configuration, scripting (JavaScript, Glide), integration (REST/SOAP). Certifications (Preferred) : ServiceNow Certified Implementation Specialist Risk and Compliance ServiceNow Certified System Administrator ITIL or CISSP (bonus) Domain Knowledge : Strong understanding of risk management, SecOps, compliance, and audit frameworks. Soft Skills : Strong analytical skills, stakeholder management, and problem-solving mindset.

Role Responsibilities: A day in the life of an Infoscion • As part of the Infosys consulting team, your primary role would be to actively aid the consulting team in different phases of the project including problem definition, effort estimation, diagnosis, solution generation and design and deployment • You will explore the alternatives to the recommended solutions based on research that includes literature surveys, information available in public domains, vendor evaluation information, etc. and build POCs • You will create requirement specifications from the business needs, define the to-be-processes and detailed functional designs based on requirements. • You will support configuring solution requirements on the products; understand if any issues, diagnose the root-cause of such issues, seek clarifications, and then identify and shortlist solution alternatives • You will also contribute to unit-level and organizational initiatives with an objective of providing high quality value adding solutions to customers. If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Work Experience: 2 - 9 years of experience Educational Requirements: Master of Computer Science,MCA,Bachelor Of Computer Science,Bachelor of Engineering,BCA,BTech Additional Responsibilities: Ability to work with clients to identify business challenges and contribute to client deliverables by refining, analyzing, and structuring relevant data • Awareness of latest technologies and trends • Logical thinking and problem solving skills along with an ability to collaborate • Ability to assess the current processes, identify improvement areas and suggest the technology solutions • One or two industry domain knowledge Technical and Professional Requirements: Technical Requirements: • Primary skills:Domain->Network->Network Security Firewall & Policies,IDAM,IDAM->Cyberark,IDAM->Forgerock,IDAM->Microsoft Identity manager,IDAM->Okta,IDAM->Oracle Access Manager(OAM),IDAM->Oracle Identity Manager(OIM),IDAM->Ping/Federate,IDAM->Sailpoint,IDAM->Saviyant,Technology->Application Security->Application Security - ALL,Technology->Enterprise Mobility Solution->MS Azure AD, MS Azure RMS, MS Intune,Technology->Finacle-Core-Payments->Faster Payment Service->Advance,Technology->Infrastructure Security->Security Incident and Event Management (SIEM),Technology->Network->CISCO technologies,Technology->Network-Firewall_and_Media->Palo Alto Preferred Skills: IDAM,IDAM->Oracle Identity Manager(OIM),IDAM->Oracle Access Manager(OAM),IDAM->Sailpoint,IDAM->Cyberark,IDAM->Ping/Federate,IDAM->Forgerock,IDAM->Microsoft Identity manager,IDAM->Okta,IDAM->Saviyant,Domain->Network->Network Security Firewall & Policies,Technology->Application Security->Application Security - ALL,Technology->Infrastructure Security->Security Incident and Event Management (SIEM)->Splunk,Technology->Network->CISCO technologies,Technology->Enterprise Mobility Solution->MS Azure AD, MS Azure RMS, MS Intune,Technology->Network-Firewall_and_Media->Palo Alto,Technology->Cloud Security->AWS - GRC & responsibilities Preferred candidate profile for HUBLI

The Team: Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact: This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact: This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self-QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in preparing and delivering comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications: Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications: 5+ years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required.

Job Description : Job Title : Incident Task Force (ITF) Manager Job Summary : The Incident Task Force (ITF) is responsible for managing incidents that impact the contact centers operations, processes, and services. As the governing body for all critical incidents, the ITF recommends preventive measures to minimize the risk of future incidents. The Investigations Manager within the ITF will play a crucial role in investigating, ensuring compliance, security, and risk management within the organization. Key Responsibilities : Incident Management : Manage incidents end-to-end, impacting the contact centers operations, processes, and services Preventive Measures : Recommend preventive measures to minimize the risk of future incidents Coordination : Coordinate actions to mitigate the incident’s impact and prevent recurrence Communication : Ensure timely and accurate communication with stakeholders, including employees and management Documentation : Maintain detailed records of incidents, actions taken, and lessons learned in a timely manner Analysis : Analyze patterns and trends to identify policy, procedure, or internal control failures Effectiveness Measurement : Measure the effectiveness of compensatory controls Follow-up : Monitor and report the status of issues and agreed actions identified during engagement work, reporting monthly status on issues Automation : Knowledge of transformation tools and RPA (Robotics Process Automation) is preferable Technical Skills : Proficiency in Excel, PowerPoint and Playbook Information Security : Adhere to the Teleperformance Code of Conduct, email usage policy, and customer information and data security policy. Comply with the Non-Disclosure Agreement. Skill Sets : Risk Management Practices/BPO Expertise/Internal Audit : Knowledge in these areas to effectively manage and mitigate risks Planning and Organizational Skills : Strong ability to plan and organize tasks and projects efficiently. Communication Skills : Excellent verbal and written communication skills Inquisitive and Observant : A keen eye for detail and a curious mindset to identify and address potential issues Attention to Detail : Meticulous attention to detail to ensure accuracy and thoroughness in all tasks Adaptability : Ability to adapt and perform well in a pressurized working environment Willingness to Travel : Flexibility to travel as required