- Engage with LOB Delivery Managers to ensure compliance with all required assessments per the policy and procedures. - Drive all aspects of the application controls assessment and application development life cycle assessment of third party providers. - Assess completed questionnaire and supporting field work materials to ensure they are complete and meet required expectations. - Conduct the remote assessment, providing the overall IT Risk expertise. Identify control breaks and vulnerabilities with a third party application. - Document findings and work with the LOB Delivery Manager to resolve those findings through Control Breaks logged within internal risk management systems. - Escalate issues associated with third parties as needed - Identify opportunities for improving third party risk posture as well as third party risk management processes, including expanded monitoring, KRI tracking, etc. - Assist with various Third Party Risk Management program initiatives working closely with the Third Party Risk Management Leads. - Support internal education and best practices sharing with peers and colleagues, as well as third party education & awareness, as needed
• Lead development teams in implementation of GRC solutions within ServiceNow platform including: • Policy & Compliance Management • Risk Management • Vendor Management • Audit Management • Perform fit-gap analysis to identify fitment of defined business to the technical capabilities of the ServiceNow platform. Identify level of effort required in customizing the solution to meet the requirements which have been identified as gaps. • Participate in the functional requirement & design workshops and assist in the development of the functional requirements and technical design documents • Coordinate technical tasks and work effort • Act as an escalation point of contact for technical issues and support • Lead the team in the development, unit testing, defect fixing and deployment of update sets. • Assist the project manager in ensuring overall quality of deliverables, alignment to SDLC best practices
• Design and develop typical GRC solutions like risk management (enterprise and information technology risk), compliance management, issue and corrective action plan management, exception management, policy life cycle management, third-party risk management, audit management, threat and vulnerability management, enterprise asset management, and security operations management • Define, enhance, and implement enterprise risk management frameworks based on industry standards and frameworks (e.g., ISO 27001, COSO, COBIT, PCI, NIST, HIPAA, etc.) on GRC technologies, such as RSA Archer. • Assist in gathering and documenting business requirements and identifying gaps within existing systems and processes • Define the architecture and design elements for implementation of GRC solution (including design data/object models, technical workflows diagrams, access control models, etc.) • Lead build/configuration of GRC solutions on RSA Archer as per defined business requirements and design • Lead software development life cycle (SDLC) efforts for successful build, test, and roll-out of GRC solution into production use • Assist in developing GRC governance and operating model for the setup and sustainment of the GRC program
Job Description: Broadly the role of the risk team here at Rapido involves investigating for any fraudulent activity by the riders and identifying any patterns around them. This particular role would be supporting the expansion of a new feature launched recently to other cities. The position involves fast paced developments in fraud patterns, managing the potentially high-pressure business escalations that result from these behaviors, and timely investigation, development, and implementation of data driven solutions. Ideal candidates should enjoy general problem solving and have a desire to find root cause drivers for fraud behaviors. In addition, the responsibilities also include • Mitigate fraud activity and develop, maintain, and enhance long term scalable solutions. • Proactive monitoring and timely mitigation of potential fraud attacks. • Collaborate with key stakeholders such as city teams to manage end to end closure of all reported fraudulent activity. • Enhance existing analytical toolsets to help gain efficiencies in various work processes. Requirements : • Strong logical thinking and problem-solving skills. Requires the ability to synthesize information and generalize the pattern. • knowledge of data collection and analysis, statistics, visual presentation methods and process mapping and modeling. • Great inter-personal skills, ability to manage relationships with key partners and collaborate with remote teams effectively. • Ability to work independently with minimum direction, comfort with ambiguity, and strong deliverability within strict time frames. • The candidate should be a graduate. Graduation from any stream would be considered. • Minimum of 2 years’ work experience in a relevant field, preferably within the areas of Risk Management, Fraud Prevention, or Decision Management. • Familiarity with tools such as Excel, google spreadsheets and SQL. • Requires excellent communication skills with fluency in English and Hindi or any other South Indian language (Kannada, Tamil, Telugu etc).