Risk Specialist
Bangalore
45 Hours weekly
Hybrid
Intro:
The Information Technology Risk Oversight (ITRO) function, within CSC Legal, Risk & Compliance Global Shared Services, is seeking to expand its dynamic second-line IT risk oversight team with the addition of a Technology Risk Analyst.
This role is a key component of the broader Risk Management and Governance frameworks and will play a pivotal part in the continued maturation and embedding of the Enterprise Risk Management framework . The position will focus on the oversight and management of current and emerging risks across Technology, Data, Cyber, and Artificial Intelligence (AI) and the implementation and support of CSC GRC tool migration
Key focus areas:
- Promote good risk management practices and governance across the organization in line with CSC Enterprise Risk management Framework (ERMF). This includes close cooperation with Enterprise Security and Business Unit technology teams.
- Support and drive the implementation of the GRC tool across ITRO, Risk & Compliance and Enterprise Technology
- Support and guide risk and control owners during initial risk assessments of in-house and third party applications and emerging technologies including AI
- Support and drive compliance with regulatory expectations.
- Create necessary tools (policy, standards, workflows, templates, advice and guidance) to embed a structured, consistent way of risk identification, evaluation, monitoring and reporting across Cyber Security, Technology, Data and AI risk taxonomies.
- Participate and facilitate IT & cyber risk assessments and deep dives across key systems and applications including third party systems and SaaS solutions
- Partner with Enterprise Security and BU Technology teams to ensure risks are properly recorded, tracked and remediated in CSC global GRC tool.
- Promote and support the development of appropriate control frameworks to ensure Cyber security, Technology, Data and AI risks are managed responsibly
- Driving firm-wide risk policy enhancements, consistent distribution of the policies, oversight of policy implementation and procedure/standard alignment
- Ongoing assessment and recalibration of the global risk appetite across business units, shared services and locations across CSC
- Targeted and thematic risk management deep dives. Undertake planned second line risk assessments, application control reviews and third party risk management.
- Implement modernization and automation of risk management tasks.
Candidate profile components:
The role is suited for a Technology Risk Manager with proven second/third line oversight experience in Technology risk management and/or Technology audit in financial services. The successful candidate must have a strong technical background, experience in Risk Management and/or Internal Audit with a good understanding of IT General and application controls in line with industry best practice control frameworks and the implementation and/or use of GRC tooling.
- Critical thinking, with a willingness to learn, grow, and challenge status quo.
- Minimum of 3 years’ experience in Information Security and/or Technology Risk management within financial services ideally within regulated environments.
- Relevant certification(s) Ideal e.g. CISSP, CISM, CRISC or CISA
- Knowledge of GRC tooling (Diligent One platform preferred)
- Experience in technology risk management, information security and cyber with a focus on risk identification, assessment and mitigation
- Experience with industry frameworks such as COSO, COBIT, ISO27001, NIST and other including a solid understanding of the 3 lines of defence model.
- Knowledge of Operational resilience regulations and guidelines including DORA
- Hands-on experience in targeted and thematic risk management deep dives from planning, scheduling and execution with good written and communication skills to all levels of management.
- Experience in using and implementing solutions with AI tools such as Claude Code / Github Copilot is an advantage.
- Basic understanding on third party risk management.
- Data management and governance experience ideal but not essential, however an interest to grow personally as the company mature.
- Results orientated. A self-starter with a commitment to challenge the status quo and help drive the risk management agenda forward in partnership with colleagues across all lines of defence
- Stakeholder management. The successful candidate will have excellent interpersonal skills and the ability to communicate well at all levels of the organisation
CSC is a global business, legal, and financial services company based in Wilmington, Delaware, USA, providing knowledge-based solutions to clients worldwide. We have offices and capabilities in over 140 jurisdictions in the Americas, Europe, Asia Pacific, and the Middle East, and more than 8,000 colleagues. We are the business behind business.®
Visit our careers site to learn more about CSC and our commitment to our clients, communities, and each other.
CSC is committed to creating a feeling of belonging through a diverse and growth-oriented environment where everyone is valued.
CSC colleagues have global career opportunities and excellent benefits, including annual success-sharing bonuses or commission plans based on individual performance. To learn more, visit cscglobal.com/service/careers.
We offer a range of support to colleagues with disabilities, ensuring people have the necessary resources to thrive in their roles. We encourage candidates to work closely with our talent acquisition partners to convey their specific needs. Our commitment to accessibility reflects our broader dedication to diversity and belonging,
CSC only accepts resumes from employment agencies that are part of our approved supplier program. Resumes submitted from other agencies either to talent acquisition, our hiring leaders, employees, or through any other mechanism other than our supplier process, will not be eligible to claim related fees and the submitted resumes will be considered property of CSC.
We encourage candidates to apply directly to our website and not through third-party sources.
Disclaimer: The information above describes the general nature and level of work performed by employees in this role. It is not intended to describe all duties, responsibilities, and qualifications.
- CSC is a great place to work with smart and dedicated people.
- We have won several employer recognition awards, including Top Workplace USA, Great Places to Work India, and Built In’s Best Places to Work.
- We offer fulfilling work and career opportunities. Most positions are filled with internal moves and employee referrals.
- Employees are eligible for Success Sharing, bonuses, or commission plans based on role and individual performance.
- CSC offers a competitive and comprehensive benefits package that includes annual leave, tuition reimbursement, referral bonuses, and more.
- As business needs allow, CSC offers hybrid or remote work schedules in alignment with local regulations. Specific details for this position will be discussed during the interview process.
