Operational Risk Manager
Risk Management
Description:
What You Will Do
Primary Responsibilities:
- Support the implementation of the organization’s Operational Risk Management (ORM) framework aligned with enterprise risk governance objectives
- Strengthen enterprise-wide incident management process including incident classification, escalation, root cause analysis, remediation governance, and reporting;
- Establish and enhance operational loss recognition, loss event monitoring, and operational risk reporting mechanism;
- Oversee the maintenance and enhancement of the Loss Event Database (LED) and operational risk issue tracking processes;
- Coordinate and oversee the governance and escalation of operational incidents requiring referral to the Employee Action Committee (EAC), including cases involving negligence, misconduct, internal fraud, control bypass, policy violations and other employee-related risk events;
- Ensure appropriate incident documentation, root cause analysis, evidence consolidation, stakeholder coordination, and governance reporting are conducted ti support fair, timely, and consistent case evaluation and disciplinary decision making processes;
- Partner with People Group, Compliance, Legal and Internal Audit, and relevant business units to ensure incidents with conduct, ethical, or disciplinary implications are appropriately escalated, tracked, resolved in accordance within organizational policies and governance standards.
- Support 1st line teams in embedding operational risk awareness, process governance, and control accountability into day-to-day operations;
- Partner closely with Internal Controls and SOX teams in identifying operational risks, evaluating control environments, and supporting the establishment of key controls across critical processes;
- Contribute to the enhancement of GRC tooling, operational risk workflows, risk governance automation initiatives
- Support enterprise-wide risk aggregation and reporting initiatives by consolidating operational risk intelligence from incidents, RCSA, audit findings, compliance testing, and control assessments;
- Support regulatory examinations, management reporting, and governance committee engagements relating to operational risk matters, more importantly risk incidents;
Supporting Responsibilities:
- Support the execution and continuous improvement of the Risk and Control Self-Assessment program (RCSA) across business and support units.
- Ensure operational risks, incidents, audit findings, and control deficiencies are appropriately aggregated and escalated into enterprise risk management process;
- Support the establishment of meaningful KRIs and monitoring mechanisms that provide actionable early warning signals to management
- Coordinate with Technology Risk, BCM, Operational Resilience, Fraud, Compliance and other governance functions to ensure integrated operational risk oversight.
What We Are Looking For
- Bachelor's degree in Accountancy, Finance, Business Management, Information Technology or related disciplines.
- 4 to 5 years of experience working in Operational Risk Management, Internal Controls, Risk Governance, Audit, Compliance or related functions within banking, fintech or financial services related environments
- Strong understanding of operational risk frameworks, incident management, RCSA, KRIs, and operational control environments;
- Experience working alongside Internal Controls, SOX, Audit, Technology Operations, and Compliance teams;
- Familiarity with BSP regulatory expectations and risk governance principles is preferred;
- Experience supporting governance committees, regulatory examinations, and enterprise reporting processes to board and senior management is an advantage;
- Strong analytical, communication, and stakeholder management skills with the ability to operate in fast-paced and evolving organizations;
- Experience with GRC systems, issue management workflows, and risk reporting tools is an advantage