Divisional Risk and Control Specialist
Pune - Business Bay
Applications have closed
Deutsche Bank
Discover Deutsche Bank, one of the world’s leading financial services providers. News and Information about the bank and its productsJob Description:
In Scope of Position based Promotions (INTERNAL only)
Job Title - Divisional Risk and Control Specialist
Location - Pune, India
Role Description
Group COO acts as the bridge between the bank’s businesses and infrastructure functions to help deliver the efficiency, control and transformation goals of the bank. By working towards an agreed operating model (technology, processes, people, data and controls) for the entire bank, Group COO enables business and help the bank reinvest into further growth opportunities.
The Divisional Risk and Control (DCRO) function within Group COO, is responsible for non-financial risk and control management for specific operating Division(s) within the bank. For this role a key focus for support, but not exclusively, will be the Technology, Data & Innovation (TDI) Division, the Bank’s technology division responsible for implementing the bank’s technology strategy, driving an integrated IT, data, and security agenda across the bank.
The Divisional Risk and Control Specialist role supports TDI management in identifying, assessing of risk and their impact, identifying remediation actions, and monitoring and reporting of their progress by performing various risk management activities including comprehensive risk assessments of technology functions according to established process and control standards.
The role will consist of conducting mandatory, i.e., industry or application specific, as well as regulatory compliance assessments such as Sarbanes Oxley (SO)x, SWIFT Customer Security Progranme (CSP), Target (Real Time Gross Settlement), Payment Gateway assessment primarily from an Information Technology and Security perspective as well as the execution of Group Operational Risk Management processes such as the Risk and Control Assessment Self-Assessment (RCSA) for the Bank.
Additional support extends to the assessment of Open-Source Software before use within the Bank as well as the support of other activities requiring specific control evaluations i.e. Cloud, Artificial Intelligence, etc.
The Divisional Risk & Control Specialist role requires significant stakeholder engagement, including close interaction with the Divisional Risk Leads, Regional leads, 2LoD such as Non-Financial Risk Management (NFRM) and the group’s frontline technology groups. This will include Chief Information Officers (CIOs), Development & Infrastructure Leads, Programme managers, Architects, and Production Support areas, etc.
Further, People Management is also a component of this position. The Divisional Risk & Control Specialist will be the accountable line manager for team members within the location, providing leadership, assigning and managing workloads, conducting performance reviews, etc.
You will functionally report into the Manager of the DCRO Risk and Control Assessment Team.
What we will offer you
As part of our flexible scheme, here are just some of the benefits that you’ll enjoy.
- Best in class leave policy.
- Gender neutral parental leaves.
- 100% reimbursement under childcare assistance benefit (gender neutral).
- Flexible working arrangements.
- Sponsorship for Industry relevant certifications and education.
- Employee Assistance Program for you and your family members.
- Comprehensive Hospitalization Insurance for you and your dependents.
- Accident and Term life Insurance.
- Complementary Health screening for 35 yrs. and above.
Your key responsibilities
- Perform technology risk assessments across Technology areas and processes, evaluating relevant inherent risks, validating controls, assessing the effectiveness of control design and operation, and determining residual risk.
- Work with TDI management to agree assessment findings and mitigating actions and evaluate outcomes in terms of systemic issues requiring strategic remediation.
- Ensure appropriate senior management awareness/oversight of follow-up on action items to resolve identified Technology issues, e.g., OR self-assessment, independent (project) risk review, audit issue resolution.
- Verify remediation concepts for critical systemic issues and monitors their execution according to plan and with quality.
- Design, execute and support Regulatory & Mandatory annual compliance assessment e.g., SWIFT CSP, SOx, Target etc.
- Help to drive the implementation of the department strategy and, in that context, drive design and implementation of our technology control framework around continuous assessment of our control environment.
- Challenge technology control weaknesses (raised from audits or other sources) and provide advice to the technology business lines for sustainable risk remediation options arising from weakness, errors, and external event demands.
- Manage people, including agreeing on objectives, facilitating their achievement, performance reviews.
Your skills and experience
- Experienced team member able to work independently and proactively in fast paced and global environment. Open minded, able to share information, transfer knowledge and expertise to team members. Self-confident, takes initiative and ability to manage conflicts.
- A strong technical background with wide knowledge of technology and application operation to investigate and assess impact of risks.
- Experienced analytical and investigation skills to identify underlying technology issues and demonstrate viable solutions and problem solving.
- Strong communication skills, fluent in English and local language (written/verbal) as appropriate. Ability to interface in a multicultural environment and at all hierarchy levels.
- Awareness of technology design, implementation and delivery obtained in Financial Services.
- Awareness of emerging technologies – AI, Predictive Analytics, Block Chain, Mobile, Public Cloud, etc.
- Experience of IT Management, Project/Programme Management, or IT Audit/Governance to be able to deliver assessments to agreed timelines with high stakeholder engagement.
- Understand Investment, Corporate and Retail Banking functions with broad-based experience in technology and operations like Payments and SWIFT.
- Keeps pace with technical/operational innovation to ensure good knowledge of Technology risk remediation.
- Able to ensure the timely completion of work at the required level of quality.
- Sound understanding of internal and external control, compliance, and risk frameworks such as COBIT, ISO standards, ITIL, etc.
- Able to liaise with Senior Management and regulators on reporting of project milestones, key deliverables, and credibility to obtain key stakeholder sign offs and impact of identified risks.
- Education to degree level with relevant professional qualifications an advantage.
- Certifications like CISA, CISM, CRISC, CISSP, COBIT, ITIL, etc.
How we’ll support you
- Training and development to help you excel in your career
- Flexible working to assist you balance your personal priorities
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
About us and our teams
Please visit our company website for further information:
https://www.db.com/company/company.htm
We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.
Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.
We welcome applications from all people and promote a positive, fair and inclusive work environment.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Artificial Intelligence Audits Banking CISA CISM CISSP Cloud COBIT Compliance CRISC Governance ITIL Monitoring Risk assessment Risk management SOX Strategy
Perks/benefits: Career development Equity / stock options Flex hours Health care Parental leave Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.