22 Operational Risk jobs in Pakistan

Engineering Graduate or MBA from HEC recognized university with at least 4 years of relevant experience. Registration with PEC is mandatory for Engineers. Responsibilities: JOB SUMMARY The purpose of this position is to facilitate the implementation of risk management framework at technical or operational units including Transmission and Distribution functions in accordance with SSGC’s policies and applicable regulatory guidelines. The incumbent is also responsible to guide the departments in controlling the identified risks. JOB RESPONSIBILITIES Providing consultative oversight and programs to the business units with respect to the Risk Management. Planning, designing and implementing of overall operational / engineering risk management process. Provide guidance in light of the ERM Framework, facilitates the first line of defense, in identifying, assessing, evaluating, categorizing, prioritizing, monitoring and controlling all significant risks facing the Entity. Provide guidance in identifying and assessing risk and determining the adequacy and cost effectiveness of controls. Processes, systems, procedures and data management capabilities to support the enterprise-wide risk management framework. Develops and implements risk dashboards to monitor key operational risks using Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs). Lead risk identification, assessment and on-going monitoring activities for high risk operational / engineering processes. Conduct analysis, develop risk methodologies, and drive the implementation of strategies, policies, procedures, and internal controls to identify issues resulting from internal and/or external audits. Identify and/or resolve risk issues impacting the business, including conducting control reviews or gap analyses for existing processes, as needed. Perform Process mapping analysis and process re-engineering. Review the plan to maintain the enterprise risk management system up-to-date through periodic updates of risk registers. Guide the technical departments to finalize and fill in the risk related entries and mitigation actions within the risk registers. Work closely with the technical departments to undertake a thorough risk assessment in order to obtain an understanding of the risks to assets, systems and manpower and with a view to identify threats, vulnerabilities, probabilities of occurrence and potential impact. Encourage the technical departments to highlight the risks for which there may not be any appropriate mitigation action available for the time being. Support the department in classifying the identified risk in terms of level of severity and probability of occurrence. Prioritize high risk areas for effective mitigation measures. Monitor the departments’ progress on a regular basis to check if necessary actions have been taken to mitigate the risks. Conduct training and awareness sessions for the employees of the user departments to create a culture where risks are timely identified and removed with appropriate actions, including correct entry in the risk register templates. Initiate steps to develop e-learning module to create awareness of the risk related concepts and enterprise risk management program at SSGC. Ensure that employees undergo the initial course of e-learning module and then complete the refresher course once every two years. Coordinate with the training function to include risk management training as part of new employees’ induction program. Review the monthly reports prior to submission to the management, includes the status of the identified risks and the corresponding mitigation actions. Review the annual performance report on SSGCL and departmental risk prior to submission to the management and Board Risk Committee. Keep abreast with the trends and developments in risk management that may be significant to the gas transportation and distribution industry. Support SSGC’s senior management with any aspect of risk management development and deliver risk management training for the senior management. Apply the relevant approach in taking steps in risk reduction, risk acceptance where risks are accepted, risk transference where all or most of the assets are insured and risk avoidance where the department decides not to engage in a risky activity. Write articles to create risk awareness for publication in the company’s magazines. The individual shall ensure compliance to the Enterprise Risk Management Framework enforced in the Company while performing job responsibilities in accordance with his assigned role. The individual shall ensure compliance to the Business Principles and Ethics Policy / Code of Conduct. Perform any other task assigned by superiors.

#J-18808-Ljbffr

Minimum Education: Bachelors (preferably in Risk Management or related field)

• 8-10 years of banking experience including at least 3 years of experience in a similar role
• Strong analytical and evaluation skills
• Excellent communication and interpersonal skills
• Organized and detail-oriented with the ability to meet deadlines

Key Responsibilities:

• Ensure implementation of SBP’s Operational Risk Management Framework across the bank in coordination with other stakeholders
• Develop and update Operational Risk Management Policy and ensure its effective implementation across the Bank with the objective of improving the Operational Risk Management culture, understanding and environment of the Bank
• Review and provide feedback on new and revised products, policies, business processes /SOPs from Ops Risk perspective
• Develop and maintain an effective Operational Risk Management Framework through effective use of tools – RCSA, KRIs and Loss Data Collection
• Develop and maintain a central repository of all Open Risk Events with defined corrective actions and track for closure
• Conduct operational risk trainings to keep the bank staff well-informed with developing operational risk scenarios
• Develop and implement Outsourcing Policy and ensure that it is in line with the SBP regulations

Note: Applicants must clearly mention the title of the position in the e-mail subject line.

We are an equal opportunity employer. Female candidates and differently-abled candidates are encouraged to apply.

#J-18808-Ljbffr

Minimum Education:

Bachelors (preferably in Risk Management or related field) 8-10 years of banking experience including at least 3 years of experience in a similar role Strong analytical and evaluation skills Excellent communication and interpersonal skills Organized and detail-oriented with the ability to meet deadlines Key Responsibilities: Ensure implementation of SBP’s Operational Risk Management Framework across the bank in coordination with other stakeholders Develop and update Operational Risk Management Policy and ensure its effective implementation across the Bank with the objective of improving the Operational Risk Management culture, understanding and environment of the Bank Review and provide feedback on new and revised products, policies, business processes /SOPs from Ops Risk perspective Develop and maintain an effective Operational Risk Management Framework through effective use of tools – RCSA, KRIs and Loss Data Collection Develop and maintain a central repository of all Open Risk Events with defined corrective actions and track for closure Conduct operational risk trainings to keep the bank staff well-informed with developing operational risk scenarios Develop and implement Outsourcing Policy and ensure that it is in line with the SBP regulations Note:

Applicants must clearly mention the title of the position in the e-mail subject line. We are an equal opportunity employer. Female candidates and differently-abled candidates are encouraged to apply.

#J-18808-Ljbffr

Overview

Department: Risk Management

Reports To: Head Enterprise Risk Management

Job Grade: OG-I

Total Positions: 01

Job Location: Head Office, Islamabad

What is Assistant Manager Operational Risk- IT & Digital Risk - MMBL?

The Assistant Manager – Operational Risk (IT & Digital Risk) assists the Unit Lead in identifying, assessing, monitoring, and mitigating operational risks associated with the bank's information technology (IT) infrastructure, digital platforms, and related processes.

Responsibilities

• Conduct risk assessments of IT systems, digital platforms, and related processes.
• Identify, evaluate, and analyze emerging IT and digital risks.
• Analyze the impact of new technologies and digital initiatives on the bank's operational risk profile.
• Develop and implement key risk indicators (KRIs) and metrics to monitor IT and digital risks.
• Monitor and track the effectiveness of risk mitigation controls.
• Evaluate the design and effectiveness of IT and digital risk controls.
• Recommend and implement enhancements to risk controls to address identified vulnerabilities and emerging threats.
• Investigate and analyze IT and digital risk incidents, identify root causes with relevant stakeholders, and recommend corrective actions.
• Coordinate with IT, security, and other relevant departments to ensure timely and effective incident resolution.
• Collaborate with IT, security, compliance, and other departments to ensure effective risk management practices.
• Review existing and new policies, procedures, SOPs, and other related documents.
• Review IT outsourcing arrangements to ensure compliance with regulatory frameworks.
• Perform UATs, system/application testing, and advise stakeholders on addressing associated risk issues.
• Assist in communicating IT and digital risk issues and recommendations to senior management and stakeholders.
• Stay updated on industry trends and developments in IT and digital risk management.

Qualifications

• Bachelor’s/Master’s degree in Information Technology or Computer Science from a reputable institution.
• Relevant certifications in IT risk, information security, or related areas (preferred).
• Minimum 3–5 years of experience in risk management, with a focus on IT and digital risk, preferably in the banking sector.
• Strong understanding of IT infrastructure, digital platforms, and related technologies.

Essential Skills

• Solid understanding of Operational Risk Management (ORM) concepts.
• In-depth knowledge of risks associated with technology and digital platforms.
• Familiarity with regulatory frameworks, industry best practices, and compliance requirements related to digital and branchless banking.
• Ability to collaborate effectively with risk, IT, compliance, and business teams, while fostering a risk-aware culture within the organization.

About MMBL

Mobilink Microfinance Bank Ltd. is providing banking services to over 48 million registered users including 20+ million monthly active customers across Pakistan. With a hybrid model that combines traditional microfinance with mobile/digital banking technologies, the bank now operates with over 114 branches and 270,000 branchless banking agents and provides a USSD (GSM) based digital channel offering savings, micro enterprise (MSME) loans, small housing loans, remittances, collection (utility bills and loan instalments), mobile wallets, insurance, G2P, B2B & B2P payments; thus, playing a leading role in the promotion of financial inclusion. MMBL is committed to fostering a positive and productive workplace, and our core values reflect this focus. These values include promoting innovation and entrepreneurship, encouraging teamwork and collaboration, and prioritizing a customer-centric approach in all aspects of our business.

Why Join MMBL?

This is an opportunity for someone who is passionate about making a difference and playing a key role in driving transformative change. Our team is committed to empowering millions with the tools necessary to succeed in the digital era, and we're looking for a talented individual to join us in this endeavour.

#J-18808-Ljbffr

Overview Department:

Risk Management

Reports To:

Head Enterprise Risk Management

Job Grade:

OG-I

Total Positions:

01

Job Location:

Head Office, Islamabad

What is Assistant Manager Operational Risk- IT & Digital Risk - MMBL?

The

Assistant Manager – Operational Risk (IT & Digital Risk)

assists the Unit Lead in identifying, assessing, monitoring, and mitigating operational risks associated with the bank's information technology (IT) infrastructure, digital platforms, and related processes.

Responsibilities

Conduct risk assessments of IT systems, digital platforms, and related processes.

Identify, evaluate, and analyze emerging IT and digital risks.

Analyze the impact of new technologies and digital initiatives on the bank's operational risk profile.

Develop and implement key risk indicators (KRIs) and metrics to monitor IT and digital risks.

Monitor and track the effectiveness of risk mitigation controls.

Evaluate the design and effectiveness of IT and digital risk controls.

Recommend and implement enhancements to risk controls to address identified vulnerabilities and emerging threats.

Investigate and analyze IT and digital risk incidents, identify root causes with relevant stakeholders, and recommend corrective actions.

Coordinate with IT, security, and other relevant departments to ensure timely and effective incident resolution.

Collaborate with IT, security, compliance, and other departments to ensure effective risk management practices.

Review existing and new policies, procedures, SOPs, and other related documents.

Review IT outsourcing arrangements to ensure compliance with regulatory frameworks.

Perform UATs, system/application testing, and advise stakeholders on addressing associated risk issues.

Assist in communicating IT and digital risk issues and recommendations to senior management and stakeholders.

Stay updated on industry trends and developments in IT and digital risk management.

Qualifications

Bachelor’s/Master’s degree in Information Technology or Computer Science from a reputable institution.

Relevant certifications in IT risk, information security, or related areas (preferred).

Minimum 3–5 years of experience in risk management, with a focus on IT and digital risk, preferably in the banking sector.

Strong understanding of IT infrastructure, digital platforms, and related technologies.

Essential Skills

Solid understanding of Operational Risk Management (ORM) concepts.

In-depth knowledge of risks associated with technology and digital platforms.

Familiarity with regulatory frameworks, industry best practices, and compliance requirements related to digital and branchless banking.

Ability to collaborate effectively with risk, IT, compliance, and business teams, while fostering a risk-aware culture within the organization.

About MMBL Mobilink Microfinance Bank Ltd. is providing banking services to over 48 million registered users including 20+ million monthly active customers across Pakistan. With a hybrid model that combines traditional microfinance with mobile/digital banking technologies, the bank now operates with over 114 branches and 270,000 branchless banking agents and provides a USSD (GSM) based digital channel offering savings, micro enterprise (MSME) loans, small housing loans, remittances, collection (utility bills and loan instalments), mobile wallets, insurance, G2P, B2B & B2P payments; thus, playing a leading role in the promotion of financial inclusion. MMBL is committed to fostering a positive and productive workplace, and our core values reflect this focus. These values include promoting innovation and entrepreneurship, encouraging teamwork and collaboration, and prioritizing a customer-centric approach in all aspects of our business.

Why Join MMBL? This is an opportunity for someone who is passionate about making a difference and playing a key role in driving transformative change. Our team is committed to empowering millions with the tools necessary to succeed in the digital era, and we're looking for a talented individual to join us in this endeavour.

#J-18808-Ljbffr

In this Product Management position, you will manage key business areas related to the development of a financial portfolio and risk management service. You will report directly to the executive in charge of this STRATEGIC initiative, and function with increasing autonomy as you succeed.

Initially, you will:

1. Gather and translate potential customer needs and business requirements into usable and effective consumer experience descriptions;
2. Work hand-in-hand in a cross-functional capacity to develop a consensus on product requirements, taking into consideration business, legal, customer care, usability and technical issues;
3. Contribute to the development of the product roadmap and manage ongoing changes to product implementation, in response to analysis and market changes;
4. Regularly communicate with senior management to ensure product tradeoffs are backed by data, and made in the most efficient way;
5. Maintain relationships with partners such as data vendors or technology outsourcers;
6. Conduct product reviews with prospects and clients;
7. Organize demos and training;
8. Ensure efficient internal communication around product-related topics.

Job Specification

Masters or Bachelor's Degree in Finance, Economics or Engineering, you have 3 years prior experience working in a Financial Operations environment ideally with primebrokers, fund administrators or system vendor in an onboarding context. Familiar with the needs of Portfolio Managers and Middle Office functions, you understand derivative products and the business trade flow, including market value/PnL decomposition and risk reporting. A good grasp of modern software engineering technologies, client and server side, in an Internet context is important as well to take your career to the next level in this challenging position. Experience with Bloomberg, Reuters or Markit is a plus. Superior communication and interpersonal skills are a MUST.

Information Technology and Services - Karachi, Pakistan

#J-18808-Ljbffr

In this Product Management position, you will manage key business areas related to the development of a financial portfolio and risk management service. You will report directly to the executive in charge of this STRATEGIC initiative, and function with increasing autonomy as you succeed.

Initially, you will:

Gather and translate potential customer needs and business requirements into usable and effective consumer experience descriptions; Work hand-in-hand in a cross-functional capacity to develop a consensus on product requirements, taking into consideration business, legal, customer care, usability and technical issues; Contribute to the development of the product roadmap and manage ongoing changes to product implementation, in response to analysis and market changes; Regularly communicate with senior management to ensure product tradeoffs are backed by data, and made in the most efficient way; Maintain relationships with partners such as data vendors or technology outsourcers; Conduct product reviews with prospects and clients; Organize demos and training; Ensure efficient internal communication around product-related topics. Job Specification

Masters or Bachelor's Degree in Finance, Economics or Engineering, you have 3 years prior experience working in a Financial Operations environment ideally with primebrokers, fund administrators or system vendor in an onboarding context. Familiar with the needs of Portfolio Managers and Middle Office functions, you understand derivative products and the business trade flow, including market value/PnL decomposition and risk reporting. A good grasp of modern software engineering technologies, client and server side, in an Internet context is important as well to take your career to the next level in this challenging position. Experience with Bloomberg, Reuters or Markit is a plus. Superior communication and interpersonal skills are a MUST. Information Technology and Services - Karachi, Pakistan

#J-18808-Ljbffr

Overview

Department & Function: Finance

Position: Manager Enterprise Risk Management

Location: Islamabad

Reporting to: Deputy Director Finance

Job Type: Permanent

Job Purpose: The role monitors the effectiveness of internal controls and ensures they remain aligned with evolving business needs, regulatory requirements and CMCC guidelines. Works closely with relevant stakeholders to implement remediation actions, ensuring that Financial and operational risks are adequately managed.

Responsibilities

• Own the ERM & Internal Controls policy, framework, and risk appetite statement aligned with ISO 31000 and COSO ERM & Internal Controls, tailored to company-specific risks.
• Embed risk culture through training, guidance notes, playbooks, and business partnering.
• Drive enterprise risk assessments (ERAs) at corporate, functional, and project levels.
• Maintain and update the inventory of internal controls (ICMs) applicable for CMPak after benchmarking them with Group company (CMCC).
• Test the ICMs on periodic and on requirement basis and reporting the results to the management and the Group company.
• Preparation of annual company level risk management plan and development of controls to mitigate the risks.
• Monitor and report the risk on monthly basis in monthly operational meeting with the management.
• Develop early risk warning mechanism encompassing the whole organization and providing regular monitoring reports.
• Maintain an enterprise risk register with risk owners, treatment plans, timelines, and residual risk ratings using qualitative and quantitative techniques.
• Continuous regular coordination with head of departments on matters ranging from providing risk management process understanding and internal controls implementation guidelines for the strategic alignment of all company-wide initiatives.
• Assist in identification of new risks by periodically reviewing financial statements, management reports and industry situation etc.
• Assess the effectiveness of management actions provided by the concerned Risk & Control Owners.
• Ensure effective execution of ERM processes relating to all relevant projects as per applicable policies / procedures
• Support to ensure effective implementation of ERM & Internal Controls Policy and Framework Assisting testing of compliance with applicable Policies and Procedures.
• Conduct researches on regular basis regarding developments in the field of risk management and getting those implemented
• Prepare various templates/tools/forms etc. for supporting various steps in Risk Management process

Qualifications

Education

• CA, CIA, ACCA, ACMA. In addition,Risk related certifications will be a plus.

Work Experience

• At-least 8-10 years of total and 5-6 years of relevant work experience in the area of Enterprise Risk Management & Internal Controls. Experience of Telecommunication Industry will be preferred.

#J-18808-Ljbffr

This role is responsible to identify, measure and manage risks faced by the Company by implementing risk management policies and procedures.

Competencies Good knowledge of insurance industry, its regulatory requirements, current market environment and industry best practices in risk management. Attention to detail and analytical skills, strong organizational and problem solving skills. Ability to work independently and under pressure.

Qualification Required Minimum graduate degree in Risk Management or related field. ACCA qualified/ CA part qualified or pursuing FRM certification will be preferred.

#J-18808-Ljbffr