Gre Dvmo - Pune, India - Deutsche Bank

Deutsche Bank

Verified Company

Pune, India

3 weeks ago

Posted by:

Deepika Kaur

beBee Recuiter

Description

Job Description Summary

The Vendor Risk Manager Specialist supports the process for identifying and managing the risks arising from the engagement of third-party vendors under DB GRE ownership.

DVMO Vendor Risk Manager is responsible for managing the development, implementation and maintenance of GRE Third Party Vendor Risk Management tools to track and evaluate vendor risk for DB GRE portfolio in-line with the Bank-wide processes and policy requirements.

The Vendor Risk Manager is part of the Global Real Estate (GRE) Divisional Vendor Management Office (DVMO).

The DVMO is responsible for implementing key elements of the vendor lifecycle framework in full compliance with the groups policies and standards.

The DVMO partners with the business functions to maintain a full understanding of business priorities and requirements to lead to the best sourcing outcomes across the Bank.

The DVMO manages the divisional contract and Vendor legal governance and contributes to the required group wide transparency on our key vendor partners to drive informed management decisions.

Vendor Risk Management is conducted in close collaboration between Global Procurement (GP), the Bank's Control Functions, the DVMO and the Service Owner (Business representative).

The Vendor Risk Manager oversees the 'certification' of Vendors against the Bank-wide TPRM assessment & control framework.

This requires vendors to respond to various control assessments, providing evidence and attestations that are then reviewed and assessed by DB's 2LoD Control Functions with the support of the Vendor Risk Manager and GPs Third Party Management (TPM) function.

The Vendor Party Risk Manager will be responsible for monitoring the progress of the control assessment certifications and the overall transaction.

Key Responsibilities:

The role holder will support GRE in the below 4 steps:

Data collection: information collected as part of onboarding from Principal vendor covering entire supply chain

-
Risk Assessment: Risk assessment performed to ensure GRE vendor has necessary controls to manage risk within its supply chain
-
Risk Mitigation incl

contract remediation:
Control gaps identified during Assessment phase are transparent and managed in line with Banks risk management process

Risk Monitoring:
Periodic recertification of subcontractor controls and concentration risk monitoring occur through lifecycle of engagement

Responsibilities
-
Business Leadership:Collaborates with colleagues and influences activities to achieve positive outcomes in the interests of the wider DB business. Promotes collaboration within the work streams across GRE, DB's control functions and with vendor partners
-
Vendor Risk Management: Working with the Vendors and Vendor Managers, develops and drives the Risk Assessments in DB Risk tools, including responsibility for:

Vendor Risk Management entries being initiated (if/ as relevant)
Vendor Risk Management tools administration: manage VRM transactional assessment process on behalf of GRE SD, incl. SRO-Delegate roles
Business Continuity Management (BCM) and Disaster Recovery (DR) validation for Vendors
Risk related Service Delivery Management review, including Performance and Contract Reviews

-
Information Security Officer (ISO):Ensure the GRE is compliant with regulatory requirements for Application Information Security including:

management of information security in GRE, the ISO performs this role based on the policies, processes and standards established by the bank's Chief Security Office, the Information Security Risk Function and the Information Security Management System defined by the CISO.
Skills & Experience (Recommended)
Experience in Risk Management systems, tools and processes and commercial management in the GRE environment
Experience working in the Financial Services/Management industry
Strong analytical skills, interpersonal, communication, influencing, organization and planning, project management and team working skills.
Demonstrated experience in developing and managing reporting processes and tools.
Strong domain knowledge of the GRE business and business processes.
Ability to work in international, matrixed, virtual teams within a matrixed organization. Self starter, proactive and with an innovative approach to problem solving.
Strong capability to interface with numerous stakeholders from different Risk Type Controllers
Fluent in English (written/verbal) and preferably other European languages

Skillset (Recommended)

Excellent Analytical Skills and proficient knowledge of MS Office tools/apps
Strong Interpersonal Skills, and a Team Player
Good knowledge of Information Security Risks

Education | Certification (Recommended)

Bachelor's/Master's degree in Finance, Supply-Chain Management and/or Risk Management (or equivalent) from an accredited college or university (or equivalent)

Our values define