Skip to content

General Information

Ref #
612345678901012234
Country
India
Region
Maharashtra
City
Mumbai
Contract type
Permanent
Professional Family
F03 - RISK

Description

Position Purpose: 

The Fraud risks including, but not limited to, External fraud and Internal Fraud, data leakage prevention due to fraud, fraud through suppliers, frauds where customers are a victim are key avenues for losses, reputational impact and systemic operational risk for financial services. This role exists to coordinate the supervision and oversight of these Fraud Risks Management activities globally and establish uniform practices across the function by cascading the guidelines and framework developed at Group level. Rogue Trading (RT) risks as a key fraud risk category and under the Designated Market Activities (DMA) risks is a critical risk area within the Internal Fraud risks. 

This role exists to contribute to the management of all fraud risks, with focus on Rogue Trading risks under the RT DMA team lead, especially by executing the Level 2 Controls and other supervision and oversight activities on these risks globally.

Scope: All of Group’s business activities that are exposed to fraud risks with specific focus on activities that are exposed to Rogue Trading risks globally.

 

Responsibilities:

The RISK ORM – AF Analyst is a risk professional who assists in coordinating the execution of Level 2 Controls and general supervision and oversight activities across the Group, under the guidance and leadership the AF Manager (RT).  

 

 

The role requires: 

         Knowledge of Operational Risk framework and governance at Group (HI, PI, RCSAs, Recommendations and Action Plans, Level 2 controls)

         Understanding of the risks and the business activities / processes in Banking sector

         Knowledge of RISK ORM and BNPP organisation

         Coordination and leadership skills to influence, inform and consult with fraud experts and fraud risk managers for global teams in three different regions (APAC, EMEA and Americas)

         Understanding of the system of information (applications, services,) that are relevant for Rogue Trading risks

 

The general responsibility of the role includes - 

Level 2 Rogue Trading Controls Execution & Monitoring

         Perform LoD2 controls planning, execution, and monitoring (e.g., controls plan definition, results analysis).

         Execute and monitor DMA Level 2 Controls as part of the annual program, including:

         Inventory management of L2C procedures (quarterly consolidation).

         Follow up on DMA quarterly controls inventory consolidation by 1LoD on GCLs issued by RISK (RT, TACNAC).

         Read-across analysis of L2C results and challenge transposed procedures.

         Contribute to the Rogue Trading Committee’s preparation by reviewing control’s applicability, monitoring RT events, analysing controls performed by 2LoD.

 

Misconduct & Events without Impacts to the Bank (EWIBs):

         Investigate and escalate incidents of misconduct (e.g., fraud,..).

         Contribute to misconduct escalation processes and group read-across following RT incidents.

         Monitor EWIB incidents and related controls.

 

Rogue Trading Risk & Control Self-Assessments (RCSAs):

         Analyse Rogue Trading RCSA results and monitor linked action plans (e.g., R-4).

         Perform yearly read-across analysis to identify control gaps.

         Operational Risk Framework:

         Support check-and-challenge of RT RCSAs using L2C results.

         Ensure alignment with BNPP’s Operational Risk Framework (HI, PI, RCSAs, recommendations).

 

 

 

 

 

 

Global DMA Governance and Reporting:

         Provide global DMA governance coordination, including:

         Quarterly reporting on L2C execution status.

         Monitor KPIs for RT Committee (e.g., training completion rates, control effectiveness)

 

Training:

         Maintain/update training material on Rogue Trading and follow up the assignation campaigns.

         Monitoring of mandatory training completion (identify DMA staff, track KPIs for RT Committee reporting).

 

Collaboration & Process Improvement

         Work with 1LoD control owners (GM, 2S, ALMT, CPBS OROs) to execute L2Cs.

         Support central teams on RT-related tasks (e.g., on behalf of local OROs).

 

Innovation & Automation:

         Propose innovative solutions to industrialize/automate L2C executions.

         Contribute to fraud risk communities (sharing best practices with global teams).

 

 

 

Skills and Experience Required:

         Successful candidate will have exposure to operating in risk management programs in global organizations, with robust knowledge of technology, risks, architecture and related tools. Prior fraud risk management, compliance or fraud prevention experience and exposure to the Financial Services industry is a must.  Experience with Rogue Trading risk management and systems is preferred.

 

 

Specific requirements:

         Suitable experience (12+ preferred) in any of the disciplines – Fraud risk management, fraud examinations, IT risk management or IT continuity.

         Bachelor’s degree in information technology, Information Security, Business or Risk Management (or equivalent professional qualification).

         Ability to independently investigate complex cases including cyber security incidents, intellectual property theft, fraud and abuse, asset misuse, and violations of corporate policy.

         Team player – focus on the success of the whole team. Working well both with others, as well as individually.

         Excellent stakeholder management skills.

         Experience in a 2LoD, Risk function, operations or an Internal Audit role.

         Good listening and analytical skills – being able to come to a thoughtful and business focused conclusion quickly.

         Ability to see the customer perspective, i.e. from a business point of view, the most secure solution is not always workable or realistic considering costs and benefits.

         Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate.

  • Adapting personal approach to suit situations, individuals, groups and cultures. 

         Taking accountability for their actions and be open and honest when things have gone wrong and celebrating successes when things have gone well.

         Being rigorous and thorough – especially when logging and tracking issues through to conclusion.

         Ability to manage their workload as to meet the realistic targets and priorities set in conjunction with management.

         Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business.

         Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate. 

 

Competencies

  • Good knowledge of Internal and external fraud risk management, cyber security, IT concepts.
  • Understanding of the banking industry's regulatory requirements on Fraud and ICT (e.g. Article 325 of the Treaty on the Functioning of the European Union, EBA Guidelines on ICT and security risk management etc.)
  • Ability to articulate risk management concepts in business language
  • Excellent written and verbal communication skills
  • Proficient with Microsoft Office Suite
  • Prior experience documenting tool requirements to support risk management
  • Ability to travel to vendor sites and perform assessments as necessary
  • Proven ability to manage issues through to resolution; skilled at making judgment calls.
  • Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times
  • Industry certifications (e.g. ACFE, CISA, CRISC) or willingness to obtain the same
  • Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework.
  • Multilingual capability with English proficiency (+ French or Spanish) is preferred.

 

Conduct:

  • Be a role model, supporting and fostering a culture of good conduct.
  • Demonstrate proactivity, transparency and accountability for identifying and managing conduct risks. 
  • Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure.