Operational Risk Manager – Client Facing Technology recruitment

UBS is a leading global financial services firm. Our Investment Bank is one of the world’s top global investment banking and securities firms, providing a full spectrum of products to institutional and corporate clients, intermediaries, government and hedge funds worldwide.

The Client Facing Technology (CFT) Operational Risk Management (ORM) function is responsible for supporting the CFT CIO to effectively manage operational risk, security risk, regulatory risk and audit (internal external).

The CFT Risk Management function actively partner and advise the aligned development and production teams within CFT as well as our counterpart business risk managers and peer IT Risk Managers. Furthermore, we work closely with a number of related functions, including IT, Contracting Shared Services Legal (ITCSSL), Group Divisional Information Security (GISO), Group Internal Audit (GIA) and Group Security Technology.

The CFT Operational Risk Management team is based in London, Zurich and New York but covers the global IT environment across all business divisions for our Client Facing Technology.
The position reports to the IT Operational Risk Manager for CFT. The individual will be responsible for several ongoing requirements as well as key projects, including but not limited to:
1) Manage operational risk events; facilitate in assessing possible risks through Incident and Problem Management Procedures and provide Management Summary for Group Reporting.
2) Understanding / Managing the Operational Risk Assessment Process for IT including identification, evaluation (analysis / assessment) and responding to risks (i.e. monitoring / reporting).
3) Assisting with the bank’s Sarbanes Oxley (SOX) self certification process. This includes helping IT understand control standards and their implications for specific applications as well as assessing IT’s adherence to control standards. Subject matter expert for implementation of the Application Health Check across CFT.
4) Working with the Bank’s Operational Risk Control (ORC) team to ensure that the IT Operational Risk metrics, assessments and reporting are in line with the expectations of the UBS Group and that they are supplied with the correct data and that effective risk management is demonstrated. Assessment of design and operating effectiveness of controls through the Internal Control Assessment Process (ICAP).
5) Assessing the operational risk associated with new application development – work closely with IT Security Risk Management and the development teams to manage potential gaps prior go-live of a new solution.
6) Liaising with internal and external auditors
7) Liaising and partnering with our Information Security and Legal Compliance organisation to ensure complete risk profile understood.

• This role will primarily face-off to the CFT managers for our client portal, Web Communications, Collaboration and Mobile systems. The successful candidate will therefore need to develop strong client relationships within those IT functions as well as relationships with key stakeholders (e.g. business owners) across UBS Group. The ability to work with and communicate / report to senior management is especially important.
• The successful applicant will need a variety of skills to ensure that the role is a success: excellent problem management skills, strong organisation skills; the ability to network well and get on with people; solid experience with handling management information and metrics – design, collection, analysis and senior management reporting; a strong focus on delivery; and experience of a project environment. Experience of an IT Service Delivery Methodology such as ITIL, COBIT, and 6 Sigma would be an advantage.
• As this role is focused on Information Technology within a Banking environment, candidates who come from this background will be able to add value to the team more swiftly. This is not, however, a prerequisite. Training will be provided in the relevant regulatory aspects of IT Operational Risk and the appropriate tools and technologies.
• Experience of a project environment, in particular planning, testing and tracking against a plan, is also required.

Requirements

• Will be expected to have solid experience in IT Risk Management and as appropriate should help shape the IT Operational Risk function. Success will be measured based on contribution
• Process orientation and ability to spot control weaknesses as well as control gaps
• Integrate professionalism into the existing team of risk analysts
• Strong interpersonal, analytical and documentation skills
• Understands importance to comply to regulatory requirements
• General IT technical knowledge
• MS Excel data analysis skills and statistical knowledge of advantage
• Experience of a project environment – able to help specify, test, implement and train individuals in self certification and metrics tool

You are:
• A person with a technical background, with an ability to understand and appreciate different technologies and infrastructure
• Detail oriented, analytical, a good writer and presenter, adept at preparing PowerPoint and Excel pivot tables / macros
• Respected, influential, have very high integrity, able to work under pressure and tight deadlines
• Person with experience in IT Risk and understand its relevance and impact to the wider business
• Comfortable with hands-on “delve into the details” work, as well as high level strategic analysis

UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.