Lead: Risk Reporting & eGRC

Finastra: Who are we?

The Future of work is OPEN.

Finastra is the 3rd largest fintech company in the world, with 10,000 superstars serving 8,500 financial institutions in 130 countries.

We are building the #1 open platform for the financial universe, partnering with global players like Microsoft, Accenture, Salesforce and many more.

We believe the future is OPEN and that means we have an OPEN platform, OPEN ecosystem, OPEN & inclusive culture and we are OPEN for Good, particularly focusing on financial inclusion, open innovation and helping save the planet.

Job Summary

As part of the Global Risk Management (GRM) team, this role plays a key function in a dynamic, Global Financial Technology (FinTech) Company, partnering with the business to ensure risks are recognized and managed appropriately. The role is responsible for managing the eGRC platform, as well as utilizing data mining, analysis, and reporting to provide insights for data-driven decision making, planning, and process improvement initiatives across the GRM team.

• Apply data to business issues and provide gleaning insight and actionable intelligence across a broad range of challenges.
• Establish enterprise-level risk and audit metrics to drive process improvement and gauge performance (KPIs & KRIs).
• Develop automated processes and solutions to enable continuous metric gathering, monitoring, and reporting.
• Provide strong working knowledge and familiarity with the Microsoft Power Platform, specifically Power BI and Power Automate.
• Provide status updates and metric trends to key stakeholders across the organization.
• Recommend improvements to systems, procedures, and processes to minimize risks, improve efficiency, or generate cost savings.
• Work cross-functionally to define requirements, oversee delivery and maintenance of eGRC tools.
• Monitor industry trends, competitive insights, and maintain compliance with regulatory expectations and requirements.
• Create and drive strategic department initiatives to further advance the GRM function.
• Lead, train, develop, and mentor eGRC & Risk Reporting team associates.
• Perform special projects as needed.

• B.S. in Information Technology or related field (e.g., information systems, business intelligence, computer science, etc.)
• 7+ years of Enterprise Risk Management (ERM), eGRC, IT Audit, or other relevant experience

• High ethical standards with ability to handle confidential / sensitive issues and information with the highest degree of professional responsibility.
• Ability to manage multiple priorities, work under pressure and time constraints.
• Outstanding data and analytical skills with keen attention to detail.
• Strong technical and data management skills including ability to audit, format, model, and analyze large datasets and discern data inaccuracies.
• Experience in eGRC solution design, development, and deployment
• Experience with data visualization techniques and concepts (Microsoft Power BI preferred, Tableau, etc.)
• Proficiency and experience with the Microsoft Power Platform (Power Automate, Dataverse, Fabric, Power Apps, etc.)
• Strong oral and written communication skills with the ability to communicate at all levels of the organization.
• Strong project management skills with the ability to manage multiple concurrent projects successfully.
• Ability to work with minimal supervision, make independent, data-driven decisions.
• Ability to analyze and interpret technical information, reports, documents, and diagrams.
• Solid people skills with the ability to build relationships and gain the confidence and respect of internal and external stakeholders.
• Willingness to obtain professional certifications, such as Certified Information System Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar.
• Advanced proficiency in Microsoft applications (Office 365 Suite, Excel, Word, PowerPoint, Visio, etc.)
• Knowledge of relevant frameworks, standards, and regulations (i.e., SOX, COSO, COBIT, IFRS, NIST, FFIEC, ISO, GLBA, OCC, PCI, GDPR, etc.)

• Master's degree in Information Technology or other related field (e.g., information systems, business intelligence, computer science, etc.)
• 10+ years of Enterprise Risk Management (ERM), Risk and Compliance (eGRC), IT Audit, or other relevant experience.
• Experience designing, implementing, and working with Enterprise Governance, Risk and Compliance (eGRC) platforms, technology-based risk mitigation techniques, etc.
• Experience working in Financial Technology (FinTech), Financial Services, or Technology industries.
• At least one professional certification, such as Certified Information System Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar.
• Risk management experience in a Public Accounting firm.