Professional, Enterprise and Operational Risk

Job description: Professional, Enterprise and Operational Risk
 

Closing on: November 25, 2024 at 11:59pm (China Standard Time)
Duty Station: Shanghai, China
Target Market: Global recruitment

Position Objective

The Risk Management Department, under the Office of the Vice President for Strategy and Risk, is functionally responsible for providing technical and programmatic services in managing enterprise, credit, market and liquidity risk critical to achieving the Bank’s mission through defining the Enterprise Risk Management Framework (ERM) and calibration of the Risk Appetite Statement (RAS).   The Enterprise and Operational Risk unit leads in providing advice and guidance in managing enterprise and operational risk while developing policy approaches that inform the Bank's decision-making and response to emerging issues in risk management and business continuity. These risk management activities are critical to ensuring NDB is able to anticipate risk events and imagine scenarios forming part of the unit's capacity to provide technical advice and guidance that informs the Bank's risk tolerance, expansion of dynamic programs and decision-making. 

Reporting to Chief, Enterprise and Operational Risk, this Professional, Enterprise and Operational Risk position will work along with IT, Cybersecurity and other NDB departments, developing methodologies to assess the maturity of the processes and controls, defining instruments for monitoring relevant risks, defining and tracking action plans to achieve the desired maturity.

Purpose (Analyze)

●  Supporting IT and cybersecurity assessment programs for the NDB, applying best practices frameworks such as NIST, ISO, COBIT, ITIL.
●  Identify key risks across the Bank's business units through the conduct of risk assessments in programs/projects and determine approaches to mitigate risk exposure and strengthen internal controls.
●  Set-up and organize components for the implementation of contingency plans for the Bank's business units and preparedness to ensure timely reaction to an emergency and prevent disruption of normal operations.
●  Explore with liaisons from other departments (e.g., IT, Internal Audit, etc.) approaches and tools that collect and monitor Key Risk Indicators and facilitate the conduct of risk assessment ensuring that preventive and mitigating actions are planned and implemented in the Bank's business unit.
●  Analyze and implement operational risk methods and tools (e.g., risk control self-assessments, key risk indicators, loss data event capture, risk registers, business impact analysis, etc.) to contribute to the development of the Bank-wide stress testing and defining reporting requirements.

Engagement (Collaborate)

●  Working along with IT, Cybersecurity and other NDB departments, developing methodologies to assess the maturity of the processes and controls, defining instruments for monitoring relevant risks, defining and tracking action plans to achieve the desired maturity.
●  Advise management and staff on the implementation of operational risk management strategy to ensure alignment and address any gaps that may be identified, including management of program/project portfolios.
●  Engage key stakeholders within the Bank by providing specific risk management knowledge that are aligned with the Bank's strategic imperatives and developing training materials for bank management and staff to enhance risk awareness and management.
●  Provide advice using external references from other IFIs regarding risk management practices.
●  Collaborate with external stakeholders to ensure that the NDB's risk management policies methods and tools are in compliance with applicable rating agency standards and global best practices.
●  Providing training and awareness to the teams on risk management.

Delivery (Manage the Project Cycle)

●  Supporting the implementation and review of business continuity framework, including business impact analysis, threat assessments and business continuity plans.
●  Contingency testing for the Bank and preparation to react to an incident or emergency that could disrupt its normal operations.
●  Maintaining a robust Second Line of Defence oversight as per NDB policies, applying operational risk management methodologies to ensure that BCM, IT and Cybersecurity Risks are reflected properly.
●  Benchmarking the Bank against industry best practices in Risk management, BCM, IT and Cybersecurity.
●  Monitor the implementation of risk management plans to ensure programs/projects are delivered according to the expected timelines and expected results, in accordance to Bank’s strategy.
●  Organize the review and analysis of risks in the Bank's business units to ensure timely reporting and escalation of risks to Senior Management and the Board of Directors.
●  Organize and review the documentation of risk management plans and program/project portfolios in BMCs to ensure consistency of implementation and compliance to the Bank's established risk management strategy.
●  Assess the effectiveness of risk models, approaches and tools to identify risk applicable to each of the Bank's business units.

Target Skills Profile

Substantive Knowledge

●  Demonstrated capacity gained through advanced training/education in Enterprise and Operational Risk reflecting conceptual understanding
●  Established, up-to-date knowledge of international practices and standards related to Cybersecurity/IT/BCM frameworks.
●  Strong analytical skills with attention to detail and business sense. Exceptional problem solving.
●  Render rigorous analysis of Enterprise and Operational Risk instruments.
●  Utilizes standard approaches that require limited adaptation and are consistent with the Risk Management Framework and Enterprise and Operational Risk instruments.

Communication Skills

●  Demonstrated Skill gained through exposure in presentation.
●  Excellent verbal and written communication skills. Interpersonal skills with high resilience. Strong ability to disseminate this knowledge effectively within NDB.
●  Communicate inputs and insights to team that enables the integration of work outputs as part of a coordinated service.
●  Engage clients to ensure comprehension of needs and build understanding of project/service delivery standards.

Execution Skills

●  Demonstrated Achievement in the execution/delivery of simple programs/services.
●  Deliver outputs in a manner consistent with standard timeframes to support the work of others.
●  Deliver outputs which are consistent in quality and relevance.

Requirements:

●  Minimum of 5 years of relevant professional experience in a multilateral development bank or equivalent or regulated financial institution with hands-on experience in the Cyber/IT/BCM function.
●  Master’s Degree or equivalent in a relevant professional field from a reputed university.
●  Relevant experience in a multi-cultural work environment.
●  Fluency in English essential to communicate in writing and speaking.

For candidates based in Russia, if you face any technical difficulties, please email your resume and cover letter to career@ndb.int with the Job Title and Requisition Number in the email subject line.