Job Description

Key Performance Indicators:

Participation in relevant service line specific EA community sessions to address the GRC requirements Completion of Risk and Control Self-Assessments as per the agreed schedule Remediation of Technology GRC risk issues as per the established timelines Adequately monitor and supervise remediation of Technology Service Line risk issues as per the agreed timelines Ontime completion of KRI reporting and GORM incident management reporting Completion of regulatory reporting activities as per the timelines Adherence to GRC automation initiatives implementation plans Ontime completion of mandatory trainings and meeting certification requirement Ensure external audit and regulatory certifications are completed on time without non-compliance (PCI DSS, KPMG Statutory Audit, Swift CSF and NESA) Coordinate with service lines to gather RFI's and management response for GIA (Group Internal Audit's) on time.

Knowledge & Experience:

6 or more years of working experience in IT Security, Risk and Governance practices. Evidence of influencing senior stakeholders and dealing with external auditors and regulators Excellent interpersonal skills and good oral and written communication skills Good understanding of process models in ISO and industry standards relating to IT Security, Risk and Governance. Good understanding of security and risk management in financial institutions. Good understanding of innovations / trends in IT and fintech in particular Recent experience in the governance of agile and other digital/innovation ways of working Good experience of enforcing good governance across an outsourced IT resourcing model. Strong analytical capabilities and knowledge of related tools and processes. Proven ability to handle volume detail and summarize effectively Excellent knowledge all aspects of technology: infrastructure; operations, security, development, change/transformation, support, innovation, vendor management etc., and banking related processes especially risk management. Should have demonstrable experience of working in the majority of these domains. Good understanding of technology processes across a full service IT organization. Should have demonstrable experience in these areas. Good understanding of banking related environments - especially around high availability, data confidentiality, security etc. Good understanding of project management to drive the team to deliver to objectives and to oversight the division's change governance Good understanding of technology trends to keep the policies and procedures ahead of the curve Good knowledge in different IT process models (ITIL / ISO / COBIT etc.). High Performance attitude and track record to evidence Adequate forward planning and implementation of improvement initiatives Budget and cost management Utilization of resources - Effective utilization of staff to deliver planned and unplanned outcomes to agreed timelines User satisfaction - Feedback from business units and other IT teams on the collaborative support provided by the unit Quality - Availability of record of activities carried out by the unit, in compliance with quality assurance requirements Risk management - Effective management of risks in the infrastructure operations Vendor management - Efficient use of outsourced vendor teams. Performance of vendors as per committed SLAs Staff development - Staff turnover, availability of skills, staff satisfaction, and talent management

Skills:

Relationship management Influencing skills Big picture thinker with attention to details Strong change and communication skills Strong analysis skills Strong interpersonal skills * Resource (time and people) management skills