Program Manager(Ops Resilience Risk Manager)

Overview

We are looking for a candidate with demonstrated Risk Management experience in operational resiliency or business continuity management.  Experience in IT or IT Risk Management would be an advantage. Will be responsible for overseeing the implementation of a number of Operational Resiliency processes to ensure compliance against various internal polices and regulatory requirements. The role will work very closely with other global upstream and downstream functions/teams during the design, implementation and execution phases of the various programmes.

Key job responsibilities for this role include:

• Perform a business impact assessment (BIA’s) for key business and support functions.
• Leverage the output of the above BIA to identify and map data flow diagrams for each product, including identification of all upstream and downstream API level dependencies (including third party).
• Perform a product-based resiliency risk assessment to identify any potential vulnerabilities and to recommend effective mitigations.
• For each critical application (including API’s) identified within the BIA, support completion of IT Disaster Recovery testing procedures.
• For external third parties, develop and implement appropriate ITDR testing mechanisms to ensure compliance with DORA regulations.
• Support the Resiliency Strategy in compliance with DORA regulations.

Basic qualifications:

You will need to be able to display you have the following qualifications and experience:

• Bachelor’s Degree (3 Year Degree).
• Expert knowledge of DORA/Operational Resiliency regulations and must be a proven IT resiliency practitioner.
• A minimum of 10 years’ experience in technology risk, technology audit or related field, within a financial institution, licensed money transmitter, or payments related e-commerce function.
• Expertise in BCM for cloud native institutions.
• Preferably certified in AWS Certified Solutions Architect – Associate.
• At a minimum, BCM certified under ISO 22301 or qualified BCM institute member with  good understanding of IT risk and control frameworks, such as, CISA,COBIT, NIST, ISO 27001 or equivalent.