Manager – Tech GRC (Mashreq Global Network Pakistan) at M…

Job PurposeThis role is responsible for Technology Governance, Risk management monitoring, reporting and performance. Focus will encompass everything from ‘ad hoc’ requests to long-term high-visibility projects. Role has a substantial impact on the Technology Stream and is normally geared towards risk mitigation and/or process improvement for Technology units in the Bank.Improve maintain adequate effective controls across respective technology units and ensure risk mitigates are built around processes.Key Result AreasIT Assurance Support Technology teams for IT General controls and Statutory auditsIT GRC Reviews Finalize the internal review plan for in-scope units. Identify, Measure, Mitigate and Report the risk to appropriate levels. Monitor the controls established to mitigate the risk. Work with stakeholders from various teams to ensure that the risks are tracked and closed in a timely manner.Ensure that Risk Control Self-Assessment for Technology Units (including IBG) are in line with Operational Risk Methodology.(technology units) at banks level.Ensure stakeholder engagement is adequately governed, with periodic reviews and escalationsGovern, report and follow-up with Technology units on closure of findings / opportunities identified during the audit.Assist Technology units to identify and document the mitigating controls to cover control gaps with regards to technology environment system applications.Monitor exceptions/deviations by technology units and ensure early closure and regularization.Enhance collaboration and coordination with support functions like Audit, Operational Risk Management and Information SecurityKnowledge, Skills and Experience8 years of experience in IT-GRC, Information Security, IT Audits and with Banking domain experienceProficient technical skills, including IT General Controls, IT audits, ITIL Processes, IT Risk Management, performance metrics and reporting, technical problem resolution and vendor risk management.The candidate must be able to multitask, handle changing priorities and work independently in a fast-changing environment. Scope will include metrics reporting, action tracking, project status reporting and responsibility for the delivery of short-term initiatives.The candidate must be able to communicate and engage effectively with all levels of management across both technology and business areas, being able to articulate the risk exposure, advise stakeholders of the mitigation requirements status as well as providing clear and concise updates on various key projects.Experience in enterprise risk governance, driving best IT practices and continuous improvement processes across diverse businesses. Understanding of changes in general technological landscape, technology impact and expectations from IT in a global context is desirable.Certifications – CISA / CISM / CRISC / CISSP – Desirable Job Purpose Job Purpose This role is responsible for Technology Governance, Risk management monitoring, reporting and performance. Focus will encompass everything from ‘ad hoc’ requests to long-term high-visibility projects. Role has a substantial impact on the Technology Stream and is normally geared towards risk mitigation and/or process improvement for Technology units in the Bank. Improve maintain adequate effective controls across respective technology units and ensure risk mitigates are built around processes.