| Job Title: |
|
Manager IT Risk |
| Category: |
|
Networking |
| Total Positions: |
|
1 |
| Job Location: |
|
Lahore |
| Gender: |
|
No Preference |
| Age: |
|
25 to years |
| Minimum Education: |
|
Bachelors |
| Career Level: |
|
Experienced Professional |
| Minimum Experience: |
|
3 Years |
| Salary Range: |
|
PKR 0 to 0 per Month |
| Apply By: |
|
Jul 21, 2017 |
| |
|
|
| |
|
|
|
|
| Job Description: |
Risk Identification, Assessment and Evaluation
Identify, assess and evaluate risk to enable the execution of the enterprise risk management strategy.
Collect information and review documentation to ensure that risk scenarios are identified and evaluated. Identify legal, regulatory and contractual requirements and organizational policies and standards related to information systems to determine their potential impact on the business objectives. Identify potential threats and vulnerabilities for business processes, associated data and supporting capabilities to assist in the evaluation of enterprise risk. Create and maintain a risk register to ensure that all identified risk factors are accounted for. Assemble risk scenarios to estimate the likelihood and impact of significant events to the organization. Analyze risk scenarios to determine their impact on business objectives. Develop a risk awareness program and conduct training to ensure that stakeholders understand risk and contribute to the risk management process and to promote a risk-aware culture.
Risk Response
Develop and implement risk responses to ensure that risk factors and events are addressed in a cost-effective manner and in line with business objectives.
Identify and evaluate risk response options and provide management with information to enable risk response decisions. Review risk responses with the relevant stakeholders for validation of efficiency, effectiveness and economy. Apply risk criteria to assist in the development of the risk profile for management approval.
Risk Monitoring
Monitor risk and communicate information to the relevant stakeholders to ensure the continued effectiveness of the enterprise’s risk management strategy. Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to relevant stakeholders. Monitor and communicate key risk indicators (KRIs) and management activities to assist relevant stakeholders in their decision-making process. Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively. Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements
Information Systems Control Design and Implementation
Design and implement information systems controls in alignment with the organization’s risk appetite and tolerance levels to support business objectives.
Interview process owners and review process design documentation to gain an understanding of the business process objectives. Analyze and document business process objectives and design to identify required information systems controls. Design information systems controls in consultation with process owners to ensure alignment with business needs and objectives. Facilitate the identification of resources (e.g. people, infrastructure, information, architecture) required to implement and operate information systems controls at an optimal level. Monitor the information systems control design and implementation process to ensure that it is implemented effectively and within time, budget and scope. Provide progress reports on the implementation of information systems controls to inform stakeholders and to ensure that deviations are promptly addressed. Test information systems controls to verify effectiveness and efficiency prior to implementation. Implement information systems controls to mitigate risk.
Information Systems Control Monitoring and Maintenance
Monitor and maintain information systems controls to ensure they function effectively and efficiently.
Plan, supervise and conduct testing to confirm continuous efficiency and effectiveness of information systems controls. Collect information and review documentation to identify information systems control deficiencies. Review information systems policies, standards and procedures to verify that they address the organization's internal and external requirements. Assess and recommend tools and techniques to automate information systems control verification processes. Evaluate the current state of information systems processes using a maturity model to identify the gaps between current and targeted process maturity. Determine the approach to correct information systems control deficiencies and maturity gaps to ensure that deficiencies are appropriately considered and remediated. Maintain sufficient, adequate evidence to support conclusions on the existence and operating effectiveness of information systems controls. Provide information systems control status reporting to relevant stakeholders to enable informed decision making.
IT Policies/Governance and Compliance
Coordinate the development and ongoing maintenance of other IT policies and procedures. Ensure that all IT policies and procedures are compliant with regulatory requirements. Maintain a schedule of policy review and submission to the board for approval
Audits and Reviews Preparation and Facilitation
Serve as liaison to auditors, consultants, and the bank Compliance Committee regarding documentation and review of information compliance. Communicate audit and review results to appropriate parties; ensure that issues are addressed and corrective actions are implemented.
Keep a tracking action list of all audit issues.
Projects and Initiatives related to IT
• Participate in IT projects and initiatives to bring pro-active risk management focus into solutions.
Finca is an EOE.
|
| Required Skills: |
| Writing & Reporting,Adhering to principles & values,Applying Expertise & Technology,Analyzing,Planning & Organizing |
| Company Information |
|
|
Company Name: Finca Microfinance Bank
Company Description:
pFINCA is a globally recognized microfinance organization working in 5 continents and in 23 countries. FINCA provides financial services to the world's lowest-income entrepreneurs so they can create jobs; build assets and improve their standard of living. In 2013, FINCA acquired a majority share of Kashf Microfinance Bank Ltd. and later in November, the bank was rebranded to "FINCA Microfinance Bank Ltd"./ppFINCA Microfinance Bank Ltd is now in more than 90 cities across Pakistan with over 100 outlets. It is one of the fastest growing financial institutions in Pakistan backed with global expertise. The growing presence in Pakistan across more than 100 cities ensures that access to financial services is at the disposal of every Pakistani. FINCA Microfinance Bank Ltd. not only provides financial solutions to lowest income entrepreneurs of Pakistan but also strive to create a positive social impact through job creation and poverty alleviation. A research study has shown that 1 loan creates a minimum of 3 jobs./ppFINCA Microfinance Bank Ltd is a full service bank established under license by the State Bank of Pakistan. As a member of 1Link, FINCA Microfinance Bank Ltd. gives fund accessibility to its customers 24/7 through more than 7,000 ATMs across Pakistan. Each outlet is fully equipped with the latest banking softwares which provide robust online facilities. Our institution is an Equal Opportunity Employer(EOE) and offers its employees an enabling environment to learn, grow and excel not just in their own area of expertise, but also empowers them to exchange experiences and ideas with peers and supervisors, thereby continuously bringing about innovation and improvement in all facets of our business. Moreover, our well-rounded training program caters to the development needs of employees at all levels to ensure that they get a chance to grow as the institution progresses, and at the same time, our employee engagement initiatives are designed t
|
|
