Risk manager - Business Continuity Planning

Job Description: Risk Manager - Business Continuity Planning (BCP)
Location: Vadodara, India
Position: Risk Manager Business Continuity Planning (BCP)
Department: Risk Management / Business Continuity Reports to: Vice President - Enterprise Risk Management
Experience: 10+ years in risk management, business continuity, or related fields
Job Summary:
The Risk Manager for Business Continuity Planning (BCP) will be responsible for designing,
implementing, and maintaining the companys Business Continuity and Disaster Recovery
programs. This role ensures that the organization can continue operations in the event of a
disruption, safeguarding critical processes, assets, and people. The Risk Manager will also
work closely with cross-functional teams to develop, test, and improve BCP strategies,
ensuring compliance with industry best practices and regulations.
Key Responsibilities:
1. BCP Strategy & Framework Development:
o Lead the development, implementation, and maintenance of the
organization's Business Continuity Plans (BCP) and Disaster Recovery Plans
(DRP).
o Develop and enhance a comprehensive risk management framework,
identifying critical business functions and their dependencies.
o Assess potential business risks and disruptions and determine the most
effective mitigation strategies.
o Define and implement a risk-based approach for business continuity and
recovery planning.
2. Risk Assessment & Business Impact Analysis (BIA):
o Conduct regular risk assessments and Business Impact Analyses (BIA) to
evaluate potential threats to business operations.
o Prioritize business functions, systems, and data based on their criticality and
impact on business operations.
o Identify vulnerabilities and design appropriate measures to reduce or
eliminate risks.
3. Business Continuity & Disaster Recovery Planning:
o Develop and maintain continuity plans for various business units and
operations.
o Define recovery strategies, ensuring minimal downtime in the event of
disruptions.
o Maintain and test disaster recovery procedures to ensure system restoration
within defined RTOs (Recovery Time Objectives) and RPOs (Recovery Point
Objectives).
4. Compliance and Regulatory Requirements:
o Ensure compliance with relevant industry standards, regulations, and
guidelines (e.g., ISO 22301, GDPR, NIST, etc.).
o Ensure alignment of the BCP strategy with internal policies, external
regulations, and industry best practices.
o Manage audits and assessments related to BCP, ensuring preparedness for
external evaluations.
5. Training & Awareness:
o Design and implement training programs for staff on business continuity and
disaster recovery procedures.
o Ensure all employees are aware of their roles and responsibilities during a
continuity or recovery event.
o Conduct awareness campaigns to foster a culture of risk management and
business continuity across the organization.
6. Testing & Drills:
o Plan, execute, and manage periodic BCP/DR drills, table-top exercises, and
simulations.
o Evaluate drill results and lessons learned to improve the business continuity
strategies.
o Lead post-drill evaluations, ensuring corrective actions are implemented.
7. Stakeholder Engagement & Reporting:
o Work closely with senior management to report on business continuity risks,
threats, and response strategies.
o Provide regular updates on BCP testing, incidents, and recovery status.
o Collaborate with internal and external stakeholders (e.g., IT, legal, HR, and
third-party vendors) to align continuity strategies across the organization.
8. Incident Management & Response:
o Act as a key member of the crisis management team, coordinating response
efforts in the event of a disruption or disaster.
o Ensure an effective incident management process is in place to support the
recovery of business operations.
o Lead post-incident reviews to identify root causes and implement preventive
actions.

Key Qualifications:
• Education:
Bachelors degree in business administration, Risk Management, Information
Technology, or a related field. A masters degree or relevant professional certifications (e.g., CBCP, MBCP, CRISC, ISO 22301 Lead Implementer) will be an
advantage.
• Experience:
o Minimum 8 years of experience in risk management, business continuity
planning, disaster recovery, or related roles.
o At least 5-7 years of experience in managing business continuity programs in
a large organization.
o Strong knowledge of risk management frameworks, business continuity
standards, and disaster recovery planning.
• Skills:
o Expertise in Business Continuity and Disaster Recovery methodologies and
best practices.
o Familiarity with IT infrastructure and applications, including cloud-based
solutions, cybersecurity, and data management.
o Strong project management and organizational skills.
o Excellent communication, negotiation, and presentation skills.
o Ability to manage multiple priorities and work under pressure in a crisis.
o Strong analytical and problem-solving abilities.

Desired Traits:
• Strong leadership and decision-making capabilities.
• Excellent attention to detail and a proactive approach to risk management.
• Ability to engage and collaborate with cross-functional teams.
• High degree of emotional intelligence and the ability to remain calm and composed
during crisis situations.