3 Control Framework Jobs

Dynamic Yield, a Mastercard company, is a global technology company in the payments industry, committed to connecting and powering an inclusive, digital economy. Our Technology Risk Management (TRM) organization is a critical business enabler and an industry leader in technology and security risk management. The Security Assurance team within TRM works directly with stakeholders, including regulators, customers, and Mastercard businesses, to demonstrate our unwavering compliance with security and technology promises and obligations. Given the highly regulated environment in India, a robust risk management program is essential. This includes navigating new and existing obligations such as audits of security processes and controls, tokenization practices, and data localization compliance. As a Risk Analyst, Regulatory and Customer Assurance , you will play a key role in supporting these crucial efforts, ensuring strong security and a sound operational environment. Responsibilities As a Risk Analyst, Regulatory and Customer Assurance, you will: Risk Management Framework/Governance: Assist in the preparation and maintenance of a consolidated control framework. Support the preparation of a centralized inventory of security and technology risk management requirements and assurance expectations. Risk Management Guidance/Direction: Support business owners in analyzing business and functional requirements stemming from regulations and customer contracts. Help identify relevant technology and security risk controls. Assist in assessing the impact of business, market, and regulatory landscape changes on existing controls and practices. Audit Support: Support customer and regulatory examinations by providing comprehensive documentation and evidence to demonstrate how Mastercard satisfies its obligations and commitments. Assist in completing customer and regulatory inquiries and requests for information. Prepare for periodic customer and regulator meetings and facilitate necessary reporting. Perform compliance monitoring and pre-audit readiness reviews to ensure preparedness. Manage the collection, sorting, and maintenance of the audit evidence repository and track all open items to closure. Assist with certification efforts (e.g., SOC, ISO, PCI) to maintain compliance. Assist in reviewing reports of related parties and review System Audit Reports (SARs) and System Audit Questionnaires (SAQs) to track ecosystem compliance. Experience & Qualifications Regulatory Knowledge (India Focus): Possess knowledge of relevant regulations (e.g., payment and settlement systems, tokenization, Data localization) specifically applicable to the India business environment. Risk Management Expertise: Have a strong understanding of technology and information security risk management practices. Audit Handling: Experience in handling regulatory and customer audits, conducting assessments, and a good understanding of governance, risk, and compliance practices. Advisory Skills: Be seen as a trusted advisor who understands business processes and can provide effective security consultation and advisory. Communication & Collaboration: Possess excellent communication and people management skills, along with proven stakeholder management experience. Team Player: Be a team player with a strong business and operations focus. Cultural Awareness: Be culturally aware, sensitive, and able to collaborate effectively with cross-regional teams. Framework Knowledge: Knowledge of Risk and Control Framework standards such as NIST, ISO, PCI-DSS, SOC . Legal & Policy Knowledge: Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and IT management (e.g., GDPR, FBA, CBA, PFMI, etc.). Mastercard Knowledge (Plus): Knowledge of Mastercard products and technology, security, and other risk management programs and practices is desired but not required.

Risk & Control Hat Develop an in-depth knowledge of the operational risk and control profile across Asset & Wealth Management Advise, challenges, informs the businesses on recommended ways to mitigate risk; reviews actions items to ensure that risk is being sufficiently addressed Sets the tone from the top: Acts as a culture carrier by embedding & propagating a risk mind-set and awareness within the team, region & globally Identifies ways to share risk best practice across teams and functions, and with other business lines where like processes exist/there is exposure to similar risk Partner with the business lines to understand the residual risks that exist after issues are resolved and engage across the front to back to apply lessons learned to improve our risk and control framework Risk analysis : Work with the stakeholders to develop KRI s / KPI s which can be used to monitor operational health of our framework. Use these to drive the risk agenda with the leadership group, highlight areas of concerns and partner with line managers to develop, execute and monitor progress on remediation plans QA & Technical Hat Develop Control QA & Monitoring framework. Identify continuous improvement mechanisms to strengthen the framework based on ever-evolving changes in process, regulations & platforms Work with our QA team to design tests for data quality, lineage, and controls across a range of products, business lines and processes, including both manually and systematically created data Develop methodologies to define test scripts, execute tests, including frequency, sampling, evidencing, and follow-up actions which integrate with the broader Divisional risk management framework and datasets Partner with developers and low-code specialists to develop tooling to support test execution, recordkeeping, and reporting Work with our BI team in building data models / data visualization for generating multi-dimensional reporting Maintain strong relationships and connectivity with the broader control and data organizations to enable maintenance of the test suites as the operating and control environment changes Execute test suites using manual and automated techniques, and integrate results into the broader risk management framework, including control enhancements and risk assessments Coordinate end-to-end risk management delivery with other Divisions, such Compliance, Legal, Risk and Internal Audit as we'll as support regulatory interactions SKILLS & QUALIFICATIONS Solid understanding of the Asset & Wealth Management franchise and experience within a risk management context are required Exposure to qualitative and quantitative controls and data testing across financial products. Working knowledge of programming fundamentals including software development life cycle concepts. Ability to navigate data sets, develop metrics and perform analysis. An energetic self-starter with strong control mindset with a passion for risk management Excellent communication skills to clearly articulate issues and ideas with different levels across Asset & Wealth Management stakeholders Strong analytical skills with an ability to understand complex workflows, and excellent attention to details Innovative, including a keen eye for identifying areas of control enhancements and automation which have practical value. Good influencing skills to challenging the status quo and continuously enhance the control environment Ability to perform data analytics using metrics to identify trends and themes Sound time management skills to be able to effectively prioritize and multi-task. A mentor / coach to the juniors in the team Drive and motivation to improve personal performance, broaden knowledge, work intensely towards extremely challenging goals, and persist in the face of obstacles or setbacks Good interpersonal and teamwork skills to collaborate as a global team and build strong relationship with key stakeholders across Divisions Keeps current with emerging business, economic and market trends Aptitude handling large data sets, synthesizing a variety of information to summarize a profile Track record of delivering and enhancing measurable, impactful business outcomes and product

Develop an in-depth knowledge of the operational risk and control profile across Global Banking Markets (GBM) Advise, challenges, informs the businesses on recommended ways to mitigate risk; reviews actions items to ensure that risk is being sufficiently addressed Sets the tone from the top: Acts as a culture carrier by embedding propagating a risk mind-set and awareness within the team, region globally Identifies ways to share risk best practise across teams and functions, and with other business lines where like processes exist/there is exposure to similar risk Partner with the business lines to understand the residual risks that exist after issues are resolved and engage across the front to back to apply lessons learned to improve our risk and control framework QA / Technical Hat Control QA Monitoring framework. Identify continuous improvement mechanisms to strengthen the framework based on ever-evolving changes in process, regulations platforms Work with our QA team to design tests for data quality, lineage and controls across a range of products, business lines and processes, including both manually and systematically created data. Develop methodologies to define test scripts, execute tests, including frequency, sampling, evidencing, and follow-up actions which integrate with the broader Divisional risk management framework and datasets Partner with developers and low-code specialists to develop tooling to support test execution, recordkeeping and reporting Work with our BI team in building data models / data visualization for generating multi-dimensional reporting Maintain strong relationships and connectivity with the broader control and data organisations to enable maintenance of the test suites as the operating and control environment changes Execute test suites using manual and automated techniques, and integrate results into the broader risk management framework, including control enhancements and risk assessments Participate in the ongoing uplift and innovation of operational risk processes designed which facilitate GBM Operational Risk Resilience (ORR) supervisors and leadership s understanding and management of their risk and controls. Coordinate end-to-end risk management delivery with other Divisions, such Compliance, Legal, Risk and Internal Audit as well as support regulatory interactions BASIC QUALIFICATIONS Good understanding of the global markets franchise offered by the firm and experience within a risk management context are required. An energetic self-starter with strong control mindset with a passion for risk management Excellent communication skills to clearly articulate issues and ideas with different levels across Global Banking and Markets stakeholders. Strong analytical skills with an ability to understand complex workflows, and excellent attention to details. Innovative, including a keen eye for identifying areas of control enhancements and automation which have practical value. Good influencing skills to challenging the status quo and continuously enhance the control environment. There is also opportunity within the role to learn and apply advanced analytics software to develop low code risk management solutions. Sound time management skills to be able to effectively prioritize and multi-task. Drive and motivation to improve personal performance, broaden knowledge, work intensely towards extremely challenging goals and persist in the face of obstacles or setbacks Good interpersonal and teamwork skills to collaborate as a global team and build strong relationship with key stakeholders across Divisions. Keeps current with emerging business, economic and market trends Aptitude handling large data sets, synthesizing a variety of information to summarise a profile. Proficient in Excel, Powerpoint, MS Word PREFFERED QUALIFICATIONS Practical experience in Sales and Trading, Risk or Operations functions. Experience in audit / testing methodologies, Control testing (manual automated)