Head - IT Governance/Risk & Compliance - BFS (15-30 yrs)

Role Details

This role is for Senior Professionals of IT Governance-Risk-Compliance who would be responsible for IT Risks, IT Policy, IT processes & procedures, technology compliance assurance improvements initiatives to support the IT Governance function. Maintain activities that are audit-based, regulatory in nature to ensure the design and operational effectiveness of IT controls and gaps. Ensuring IT Governance and compliance related activities are completed in accordance with industry standards and regulatory requirements. Perform risk assessments, facilitate risk mitigation strategies and be the second line of defense for the Technology Risk function.

Job Description

- Serve as a subject matter expert for IT Governance frameworks, RBI Master Directions, Data Privacy, ITIL Processes. Keep abreast of regulations and assist in monitoring and tracking actions to ensure continuous compliance.

- Provide analytical support to the management team regarding governance, assurance, metrics, and reporting.

- Work closely with different IT Groups to continuously identify, mitigate, and manage compliance risks. Ensure readiness to satisfy internal & external audit requirements.

- Perform Risk Control Self Assessment, assign risk severity score/rating and track/report the mitigation plans to remediate the risks identified

- Convey information and ideas through a variety of channels , forums to individuals or groups in a manner that engages the audience and helps them understand and retain the message.

- Review processes & existing policies/procedures and assist IT process owners in the creation and maintenance of these policies/procedures.

- Support information assurance, highlight key control deficiencies and ensure regulator mandated compliance.

- Maintain IT controls-related documentation for processes in support of regulatory and statutory requirements.

- Promote and support a culture of continuous compliance, risk avoidance/mitigation, and skillfully communicate (verbal and written) IT governance objectives.

- Support the evaluation of automation tools to promote operational efficiency & assist in the procurement of tools and internal/external resources to ensure proper execution of a continuous governance program.

- Advises process owners on design and implementation of IT controls (manual and automated) into processes and systems using knowledge of IT risks and organization objectives.

- Coordinate with Auditors and facilitate Audit findings closure by follow-up with respective teams.

- Facilitate IT functional maturity roadmap and facilitate improvements basis best practices models.

- IT Governance background with expert level knowledge in of IT governance industry practices, IT processes, and compliance frameworks and standards (e.g., COBIT, ITIL, ISO 27001 etc.)

- Knowledge of regulatory requirements applicable to IT.

- Ability to interpret regulations and laws and have an understanding of industry audit and control standards and practices.

- Ability to work in partnership with IT Groups and business units to assure IT practices meet defined policies, standards, and key business objectives for continuous IT compliance.

- Excellent presentation skills, analytical judgment, decision-making skills, functional and technical skills, being detailed, and task oriented.

- Knowledge in analyzing and resolving complex problems and providing resolutions and recommendations to control deficiencies based on practice and precedent

- Conversant with RBI reporting, audits, inspections, Desirable - Certifications in CoBIT, ISO 20000, ISO 9000, ISO 27000, ITIL V3.