Work with Management on governance and the facilitation of the execution of the Manager Control Assessment (MCA, i.e..Risk & Control Self-Assessment) as required by the MCA Standard including the assessment and appropriate approval of risk associated with business changes.
Accountable for the quality, completeness, and accuracy of the implementation of the Control Framework, including Risk Control Policy, Control Standard, Issue Management Policy, Lesson Learned Policy and Control Inventory.
Ensure the identification of issue root cause, partnering with control and process owners to recommend holistic corrective actions and improvements, provide check and challenge to ensure appropriate escalation in according with Issue Management and Escalation Policies.
Direct teams in the implementation of the Lessons Learned Policy, including monitoring of control breaches and dissemination and learnings across other business units for process improvement to limit the occurrence of similar future events and where similar risk exposure might exist.
Support management in the review and challenge process, within the FLUs, on the effective design and management of controls to mitigate risks as required by the Control Standards, including implementation and operation, conducting the control monitoring, handling deficiencies, and escalating issues for resolution.
With management, direct teams on the timeliness, accuracy and completeness of the MCA through controls prior to the execution of a process (QC).
Assess, with management, the adherence to the MCA Standard through controls after the execution of a process (QA).
Assist management in exercising control over Operational and Compliance Risk in accordance with established Policy requirements.
Help management allocate resource to identify, assess, escalate, and manage risk exposures across Risk Categories (Operational Compliance, Strategic, Reputational, etc), including material, emerging and concentration risks in accordance with enterprise Policies and the establishment of Key Indicators to monitor risk exposures.
Assess, with management, Risk Appetite and monitor / assess exposures against this in accordance with enterprise requirements (if applicable).
Take ownership to identify, assess, record and response to Operational and Compliance Risk events, ensuring these are captured accurately, timely and in accordance with requirements.
Responsible that adequate governance and training are in place to support management of Risk profiles.
Assess, with management, the risks associated with New Activities and changes to the Business, ensuring these are well understood and adequately controlled (if applicable).
Support management on operational risk scenario analysis and stress testing for Operational Risk Capital requirements.
Be responsible of risk and control assessments or coordination for programs within various risk stripes and ensure sufficient subject matter expertise exists to enable management of these risks within the Business (e.g. third party, fraud, sanctions etc) (if applicable).
Take ownership to ensure that risk and control responsibilities and accountabilities are embedded within FLUs, including providing training and leading by example.
Assist management in guiding and influencing standards and procedures that conform to enterprise requirements and support sound operational and compliance risk management.
Apply knowledge of the business, products or services to identify and implement control points and processes throughout the business.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Qualifications:
10+ years of experience
Familiarity with 3rd party risk models.
Consistently demonstrates clear and concise written and verbal communication skills
SQL, Perl or Python, Matlab or R, Excel VBA. Database administrator experience is a plus.
Assist the Global Insights & Content and Enterprise Marketing and Brand Engagement Businesses in key policy adherence and monitoring.
Ensure quality, completeness, and accuracy of implementation of the control framework, including Risk Control Policy, Control Standard, Issue Management Policy, Lesson Learned Policy and Control Inventory.
Lead identification of issue root causes, partnering with control and process owners to recommend holistic corrective actions and improvements, provide check and challenge to ensure appropriate escalation in according with Issue Management and Escalation Policies.
Work with the Business Supervisors, Technology & Control partners to establish sustainable controls and monitoring methodologies to ensure process quality and effectiveness of controls.
Assist in the implementation of policies, standards and procedures that conform to enterprise requirements and support sound operational and compliance risk management.
Maintain a robust Manager’s Control Assessment (MCA) in compliance with the Manager’s Control Assessment Standard.
Ensure that any new controls are included in the respective teams’ frameworks, and that relevant dependencies are setup.
Keep Management aware of the risk and control environment of the Business, including emerging risks, through continuous and open communication, by preparing and hosting meetings with Senior Management to present and follow-up on issues, concerns, and corrective action plans.
Lead or participate in multiple and concurrent enhancement / transformation initiatives to remediate any identified gaps.
Take ownership to identify, assess, record and respond to Operational and Compliance Risk events, ensuring these are captured accurately, timely and in accordance with requirements.
Partner with business control owners to ensure timely action on process or monitoring fails, trends, operational losses, open issues, and action plans from ineffective controls.
Serve as main point of contact for audit groups and ensure that all audit requests are timely and appropriately provided.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Act as a subject matter expert providing support to stakeholders and control functions on an ad-hoc basis.