Assignment description

For this assignment we need a Digital Operational Risk Manager. You will be the 1st Line of Defense role responsible for developing and driving the evolvement and lifecycle of the Digital Risk Management Capability in accordance with the defined Cybersecurity, Risk and Compliance strategy and road-map in order to meet the evolving threat landscape and risk appetite of the company.

You will also manage and drive the Digital Risk Management Capability within the Digital organization with the purpose to drive, coordinate, facilitate, and monitor operational risks according to the overall Operational Risk Management process.

To succeed in this role you should be driven by attention to detail, passionate about achieving a good balance on risk management harmonizing threats, controls and business needs in association with the Bank risk appetite. You should be a natural collaborator – good at securing good outcomes for all functions, have a strong sense of ethics and integrity as well as having a passion for problem-solving and risk management.

Responsibilities:

• Establishing and govern an Operational Risk Management process within Digital
• Support and drive the evolvement of Digitals Functional Operational Risk and Compliance Committee and forum structures to assure quality
• Chair, drive and coordinate the Cybersecurity, Risk & Compliance Security Review Board (SRB)
• Conduct, facilitate and coordinate Operational Risk Assessments within the Digital organization
• Align and coordinate with 1st Line and 2nd Line Risk functions on expectations and need
• Establish relevant KPI and KRI reporting to senior Digital management and the CDO as part of quality assurance
• Coordinate the work with key Internal Controls implementation and maintenance over time (IT-GC, Application-GC, other)
• Conduct Operational Risk Management status monitoring of the Digital organization over time
• Work closely together with the Digital operational departments establishing awareness and understanding of Operational Risk Management establishing a risk based culture as well as being part and support in Operational Risk Forums
• Support control functions (2nd Line and 3rd Line) in assessments/audits and issues management
• Quality assuring, assessing, and reporting on Digital Operational Risk state to senior Digital Management and the Chief Digital Officer (CDO)

Knowledge requirements:

• Knowledge & experience in Risk Management (Product- & IT- implementation in an operational environment)
• Knowledge in CyberSecurity-, Information Security-, and IT Service Management
• Knowledge of IT process and governance frameworks
• Knowledge of security in Lean-Agile & DevSecOps working methodologies

Capabilities:

• Being capable of searching out, establishing, and managing relevant relationships within the Digital department
• Strong interpersonal and leadership skills to influence and build credibility as a peer
• Experience and competence in documentation and visualization, working with goals and roadmaps
• Exceptional reporting and communication skills
• Structured and analytical with logical thinking approach on troubleshooting
• Be able to work both individually, independently and as a team
• Able to steer end to end processes and secure high quality, detailed output and, where necessary, continuous improvement
• Able to work with multiple functions with complex ecosystems across several markets creating a foundation of operational risk management in the everyday work
• Able to show and explain operational risk in the context of Product- & IT to gain support for awareness and conscious decision-making throughout the Digital organization

Academic/Qualification level:

• Preferable to have at least one relevant certifications within the security domain, e.g; CISM, CRISC, CISSP/ISSMP
• Relevant certifications or demonstrated skills working with ITIL and Lean-Agile and DevSecOps working methodologies
• Knowledge in Operational Risk Management harmonizing with framework