You will Support/coordinate the business in managing and fulfilling its 1st Line Risk Management activitiesProactively identify risk areas and tackle relevant remediation activitiesCreate appropriate governance to facilitate the implementation, execution and monitoring of controlsDefine and rate the risk environmentChallenge the design and implementation of controls, implement and own relevant new controlsCreate appropriate reports for the leadership team to understand the full spectrum of risksAdd a risk perspective to strategy and product developmentDrive and complete documentation activities to minimize single point sensitivitiesConduct process mappingCoordinate audit and inspections actions and review/challenge both audit and the businessBeing a liaison between Risk and Control 2nd line of defense roles and the business with the benefit that core business employees are not distracted from their business roles.Responsible for escalating the operational losses within the timing defined by the Operational Risk guidelines.Responsible of supporting the 2nd Line of defense on defining the significant risks and controls owned by the business during the annual exercise (or every time that is needed) to complete the Risk and Control Assessment (RCA)Main responsibilities: Manage control implementation projectsProvide information and indicators for IT and cybersecurity governance and risk assessmentsAssess internal and third party IT and cybersecurity regulatory complianceProvide information and evidence of compliance to auditors, regulators and governance (2nd line of defense) areasWhat we are looking for: Bachelor's Degree4+ years of experience in a regulatory, compliance, risk or audit position related to IT and cybersecurityGood knowledge of financial regulations (IT and cybersecurity)Experience with risk assessments, information security assessmentsGood knowledge of information security for financial servicesGood knowledge of financial services and privacy regulations in MexicoExperience with payment card industry (PCI) standard and certification processExperience in managing multidisciplinary projects for implementing IT and cybersecurity implementationsExperience with interacting with auditors and financial regulatorsConversational English
#J-18808-Ljbffr
