Project Manager, GRC (Mashreq Global Network)

This role in Tech GRC team is responsible for Information and Technology Risk management monitoring, technology regulatory compliance reporting. Focus will encompass everything from 'ad hoc' requests to Technology GRC reviews. 

• IT GRC Reviews – Measure, Mitigate and Report the risk to appropriate levels. 
• Ensure that Risk Control Self-Assessment for Technology Units (including IBG) are in line with Operational Risk Methodology.
• Review the process of Risk Mitigation, Risk Transfer, Risk Deviation and Risk Acceptance. Periodically, share the feedback with Senior Management on accepted risk (technology units) at bank’s level.
• Ensure stakeholder engagement is adequately governed, with periodic reviews and escalations
• Govern, report and follow-up with Technology units on closure of findings / opportunities identified during the audit.
• Assist Technology units to identify and document the mitigating controls to cover control gaps with regards to technology environment & system applications.
• Monitor exceptions/deviations by technology units and ensure early closure and regularization.
• Enhance collaboration and coordination with support functions like Audit, Operational Risk Management and Information Security
• Assist IBG Technology managers for technology regulatory submissions and audits; 

• Should have 8+ years of experience in Technology GRC and with Banking domain experience
• Proficient technical skills, including IT General Controls, IT audits, ITIL Processes, IT Risk Management, performance metrics and reporting, technical problem resolution and vendor risk management.
• The candidate must be able to multitask, handle changing priorities and work independently in a fast-changing environment. Scope will include metrics reporting, action tracking, project status reporting and responsibility for the delivery of short-term initiatives.
• The candidate must be able to communicate and engage effectively with all levels of management across both technology and business areas, being able to articulate the risk exposure, advise stakeholders of the mitigation requirements status as well as providing clear and concise updates on various key projects. 
• Experience in enterprise risk governance, driving best IT practices and continuous improvement processes across diverse businesses. Understanding of changes in general technological landscape, technology impact and expectations from IT in a global context is desirable.
• Certifications - ISO 27001 LA; CISA / CISM / CRISC / CISSP - Desirable

The leading financial institution in MENA While more than half a century old, we proudly think like a challenger, startup, and innovator in banking and finance, powered by a diverse and dynamic team who put customers first. Together, we pioneer key innovations and developments in banking and financial services. Our mandate? To help customers find their way to Rise Every Day, partnering with them through the highs and lows to help them reach their goals and unlock their unique vision of success. Delivering superior service to clients by leading with innovation, treating colleagues with dignity and fairness while pursuing opportunities that grow shareholders value.  We actively contribute to the community through responsible banking in our mission to inspire more people to Rise.