Risk Specialist: Operational Resilience at Capitec Bank

About the role

• Within the Enterprise Risk Management Framework, provide 2nd line oversight over all aspects relating to Operational Resilience as required by the Basel Principles for Operational Resilience (POR) to ensure Capitec meets the regulatory requirements while ensuring that the business is more resilient during disruptive events.

What you will do

• Implement strategy for Operational Resilience
• Implement and continuously improve the Operational Resilience disciplines across the business.
• Provide proactive, forward-looking risk perspectives and strategic, value-adding risk insights to improve and mature resilience.
• Remain up to date with advances related to resilience including technology, best practice, and legal/statutory requirements.
• Provide specialist knowledge and insight to develop adequate systems and processes to monitor and mature resilience in the business.
• Implement and ensure that adequate controls are in place to monitor adherence to related processes across the business (e.g. vendor onboarding).
• Ensure that Capitec meets regulatory and compliance requirements relating the Basel Principles for Operational Resilience, SARB guidance notes, directives, etc.
• Align Operational Resilience strategy to the broader Operational Risk and Enterprise Risk strategies and processes (e.g. RCSAs).
• Create and mature KRI framework for monitoring Operational Resilience.
• Manage Business Continuity standards and coordination across the business
• Develop business continuity plans that align with strategic priorities and safeguard critical functions.
• Coordinate and conduct ongoing Business Impact Analyses (BIAs) and update the information on the BCM Toolkit system.
• Ensure that business continuity efforts are strategically prioritized based on their impact critical business activities as identified in the BIA’s.
• Facilitate periodic scenario testing of business unit Business Continuity Plans (BCPs).
• Expand operational resilience scenario testing, including scenario-specific playbooks and simulations.
• Align and consider Incident Response events to improve broad-based resilience.
• Third-party risk management (TPRM) strategy
• Apply specialist knowledge and experience to mature the TPRM framework and strategy to enable pro-active risk management and oversight.
• Align and coordinate all systems, processes and stakeholders across the business that engages with 3rd parties, to implement common standards and processes.
• Create value-adding risk insights to proactively identify and quantify 3rd party related risks.
• Develop a framework for the reporting and monitoring of risk responses (avoid, mitigate, accept, and transfer).
• Propose creative considerations for mitigating and transferring 3rd party risks at enterprise level.
• Monitor compliance with relevant SARB Directives, Guidance Notes including the Basel Committee on Banking Supervision’s Principles for Operational Resilience, and Principles for the Sound Management of Operational Risk.
• Risk Governance
• Coordinate Supplier Risk Committee meetings and Business Continuity Management meetings
• Review the adequacy of related resilience policies and policy framework
• Report resilience risks and escalate material risks to the appropriate risk governance meetings e.g., RISCO.
• Represent Capitec on relevant industry forums and regulatory engagements.

What you will bring

• A relevant qualification (e.g. degree) in Risk Management & Compliance OR Finance OR Supply Chain management OR business engineering OR related field.
• 3+ years’ experience in resilience, supplier and third-party management, procurement, supply chain management, and/or risk management and control function. OR
• 3yrs+ risk management or risk related experience preferably in a financial institution or bank.
• Crisis and incident response management experience
• Experience in the design and implementation of related systems and operating models is beneficial