Risk and Control Analyst

Job Description

Purpose of the role

To manage the efficient delivery of large-scale technical projects and capabilities across the bank and collaborate with internal and external stakeholders to understand their needs and expectations throughout the software product lifecycle, adhering to agreed time, budget and quality requirements. 

Accountabilities

• Management of the delivery, resource allocation and improvement of complex technical project capabilities across the bank using Agile/Scrum methodologies for planning, stand-ups, demos, retrospectives and the execution of sprints.
• Collaboration with customers and business teams to manage and implement customer trails to support the proposal of technically feasible solutions, and effort and timeline expectations.
• Collaboration with software engineers, quality teams, product managers and other engineering teams to deliver high-quality products and features through the software project lifecycle aligned to the banks objectives, regulation and security policies.
• Identification, assessment, and mitigation of risks associated with technical projects to prepare the bank for potential challenges.
• Management of change requests and communication with stakeholders throughout the project lifecycle.
• Management of vendor relations involved in technical projects to ensure they deliver according to agreed terms.
• Stay abreast of the latest industry technology trends and technologies, to evaluate and adopt new approaches to improving deliver outcomes and to foster a culture of continuous learning, technical excellence and growth.

Analyst Expectations

• Will have an impact on the work of related teams within the area.
• Partner with other functions and business areas.
• Takes responsibility for end results of a team’s operational processing and activities.
• Escalate breaches of policies / procedure appropriately.
• Take responsibility for embedding new policies/ procedures adopted due to risk mitigation.
• Advise and influence decision making within own area of expertise.
• Take ownership for managing risk and strengthening controls in relation to the work you own or contribute to. Deliver your work and areas of responsibility in line with relevant rules, regulation and codes of conduct.
• Maintain and continually build an understanding of how own sub-function integrates with function, alongside knowledge of the organisations products, services and processes within the function.
• Demonstrate understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function.
• Make evaluative judgements based on the analysis of factual information, paying attention to detail.
• Resolve problems by identifying and selecting solutions through the application of acquired technical experience and will be guided by precedents.
• Guide and persuade team members and communicate complex / sensitive information.
• Act as contact point for stakeholders outside of the immediate function, while building a network of contacts outside team and external to the organisation.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.

Join us as a Risk and Controls Analyst at Barclays, where you will be part of the Risk and Control team for Data and Analytics Office. Work in partnership with the Risk and Controls Manager, Tower Risk Leads and Engineering Teams, as well as across the organisation with key stakeholders, to manage open and emerging risk, audit and controls activity. You will manage all risk and controls activity in line with the required standards and where appropriate escalate in the right manner and at the right time in order to adhere to the Groups ERMF.

Responsibilities for the role:

• Support the Risk and Controls Manager as a Risk SME, using your understanding of Group Policies and Standards to help identify and document as well as classify risk appropriately, ensuring Vertical and Horizontal owners are engaged appropriately.
• Ensure non-compliances to Group Standards are managed appropriately, as per the Groups Enterprise Risk Management Framework.
• Act as the point of contact for Risk Management in Risk & Controls Team.
• Be an engaged and integral member of the Risk & Controls Team, supporting BAU methodologies and regular team meetings, helping to drive good practice across the TC.
• Work with Cyber and Technology stakeholders to ensure full compliance of all deliverables including, but not limited to: DWBs, Risk Event, SoX, Operational Risk, and Legal Requests. Work in partnership with the Tech Chief Controls Office, Chief Information Security Office and Chief Technology Office to manage and track all deliverables.
• Dispensations, Waivers, Breaches: Review non-compliance requests, check and challenge validity, work in partnership with technology team and risk partners to ensure all required mitigating control evidence is clearly documented and presented appropriately to Vertical, Horizontal and Standard owners for review and sign off.
• Where open risk is off track, escalate in a timely and appropriate manner, as per Groups processes where applicable.
• Risk Event Management: Raise, Co-ordinate and enrich Risk Events in line with Risk Event policy.
• Work with cyber, technology and risk partners to review all open risk and audits, ensuing that solutions are designed effectively and supporting evidence is sufficient to close out / evidence operational effectiveness. 
• Audit Management: Support internal/external audit engagement, effectively managing in-line with BIA audit methodologies. Including: Pre-audit checks, progress monitoring, and evidence provision.
• Provide an independent check and challenge view on risk deliverables, as required. Proactively engage risk partners to obtain approval prior to and during reviews from 2LoD or 3LoD
• Adhoc Mandatory/Regulatory Initiatives: Support and prioritize regulatory initiatives

Basic Qualifications

• Good organisation and communication skills, be motivated (and motivational) with strong interpersonal and stakeholder management skills.
• Strong analytical skills and attention to detail are essential, as well as a desire to support colleagues to manage risk (with a service focus).
• Knowledge of Operational Risk & Control and/or audit in a regulated business environment
• Consistently demonstrates integrity, fairness and professional conduct

Preferred Qualifications

• Compliance, controls, Regulatory Relations and/or Data Office experience
• An understanding of Financial Services policies/Regulatory requirement
• Previous experience in an environment that has enabled you to gain a broad understanding of technology and cyber compliance
• Knowledge of technology controls, including the development & maintenance of appropriate frameworks and methodologies. Understanding of risk assessment, risk treatment & risk remediation, including Risk Issue Classification Matrix (RICM)
• Working knowledge of technology and/or cyber/information control standards
• Drive continuous improvement, being an advocate for managing change initiatives efficiently and effectively and in line with our Policies and Standards

This role is based out of Pune.