More jobs:
Job Description & How to Apply Below
Location: Bengaluru
Job Summary
We are seeking an experienced ERM Specialist to join our Risk Advisory team for the implementation of our GRC platform for the customers. As a Subject Matter Expert (SME) in Enterprise Risk Management, you will take ownership of the ERM module delivery, ensuring alignment with clients' strategic objectives, regulatory requirements (including UAE IA, NIA, ISO standards, NCEMA Framework, and client-specific risk methodologies), and best practices.
You will collaborate with our technical team to optimize business processes, customize risk frameworks, and drive user adoption. This role focuses on addressing common challenges such as fragmented information, lack of real-time visibility, inconsistent methodologies, and inefficient workflows by implementing centralized, automated workflows for enhanced risk-based decision-making.
Key Responsibilities
Risk Framework Mapping and Design:
Lead workshops to map clients' risk taxonomy, appetite, and methodology.
Guide the technical team on risk assessment workflows, Key Risk Indicators (KRIs), escalation paths, and treatment plans.
Assessment and Monitoring Guidance:
Ensure alignment with strategic objectives and automated triggers from assessments/audits.
Oversee risk data capture, scoring algorithms, and real-time monitoring/alerts.
Risk Management
Activities:
Lead continuous control evaluation, risk identification/assessment/evaluation, risk register/repository management, mitigation/treatment, monitoring, and communication.
Facilitate integration with existing systems for seamless risk data flow.
Consultancy and Process Optimization:
Perform requirements elicitation workshops, process mapping, gap analysis, and provide best-practice recommendations tailored to clients' ERM needs.
Focus on standardizing ERM processes to address challenges like duplicate data, inconsistent scoring, weak audit trails, and scalability bottlenecks.
Testing and Quality Assurance:
Define test strategies, create test cases/scripts, lead User Acceptance Testing (UAT), and manage defects specific to the ERM module.
Oversee validation of ERM scenarios, including risk assessments, mitigation tracking, and reporting.
Change Management and User Adoption:
Design and implement adoption plans, conduct awareness sessions, and track metrics to ensure smooth user transition.
Collaborate on hypercare support post-go-live, including handover documentation and issue resolution.
Training and Knowledge Transfer:
Deliver role-based training for Risk Managers and stakeholders in both Arabic and English.
Implement train-the-trainer programs, including materials, simulations, and certification tracking to build internal capabilities.
Project Delivery Ownership:
Participate in high-level implementation phases, including initiation/planning, requirements/design, configuration/integration, testing/validation, and deployment.
Contribute to deliverables such as customized ERM frameworks/workflows, integrated interfaces, migrated data, test plans/UAT reports, defect logs, training records, and hypercare reports.
Qualifications and Requirements
Experience:
Minimum 10+ years of domain expertise in Enterprise Risk Management (ERM), with a focus on government/public sector GRC implementations.
Proven track record in implementing ERM solutions in regulated environments, preferably in the UAE or similar regions.
Experience with ERM tools and platforms, including risk identification, assessment, mitigation, monitoring, and communication.
Education:
Bachelor's degree in Business Administration, Risk Management, Finance, or a related field. Advanced certifications (e.g., CRISC, CERM, ISO 31000 Lead Risk Manager) are highly preferred.
Skills and Knowledge:
Deep understanding of regulatory frameworks such as UAE IA, NIA, ISO standards, NCEMA, and client-specific risk methodologies.
Strong expertise in ERM key capabilities: continuous control evaluation, risk register/repository, mitigation/treatment, KRIs, and real-time monitoring.
Proficiency in process optimization, workflow automation, and integration with systems like cyber security vulnerability management and third-party risk tools.
Excellent facilitation skills for workshops, training, and stakeholder alignment.
Analytical mindset for risk scoring, trend detection, and generating board-ready reports.
Ability to address challenges like lack of visibility, inefficient workflows, limited analytics, and manual processes.
Soft Skills:
Strong leadership and ownership mindset to drive module-specific delivery.
Excellent collaboration skills to work with technical teams and client stakeholders.
Ability to handle complex, fast-paced projects with a focus on user adoption and strategic risk management.
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×