Virendra Singh

I am an Enterprise Risk professional with 15 years within the Insurance back-office services domain responsible for operational risk (non financial), Business continuity risk, Third party risk and Corporate compliance. 

I have led operational risk teams on proactive risk monitoring, reviewing of both internal and external risk context and strengthening the oversight responsibilities of the first line of defence teams.

I have experience in building and deploying local, self-sustainable operational risk framework on ISO 31000 guidelines, defined by an independent risk appetite statement and provide continuous assurance through control attestations, risk reviews and monitoring of key indicators across operational, delivery / execution, continuity and third party risks. 

I work closely with the Chair of the Operational Risk Committee to review performance of the framework and its alignment in meeting organisational objectives.

On the professional front, I am an Associate, Insurance Regulatory Compliance (AIRC) from LOMA; CRISC from ISACA and am preparing for my third exam in a three part series of Certified Internal Auditor (CIA) from the Institute of Internal Auditors.

1. Ensure org risk management priorities are reflected in strategic plans, budgets, culture and report to the
   Risk Committee
2. Define, implement org Risk Appetite Statement monitor risk thresholds to support client's risk strategies
3. Identify key operating risks, material control issues through independent challenge, risk assessments and
   provide assurance in support of risk based decisions in line with Risk Appetite Statement
4. Conduct periodic risk scenario workshops (bottoms up approach), annual top down risk assessments on
   key objectives and facilitate periodic Risk Control Self Assessment process
5. Analyse deep dives on material risks identified, evaluate and make recommendations on adequacy and
   efficiency of controls in line with cost-benefits to the Risk Committee
6. Develop and support periodic review of key performance and key risk indicators, ensure regualr
   monitoring and communications with key stakeholders and risk /
7. Work with information security, legal, internal and external auditors on emerging threats and impact to
   controls framework
8. Manage compliance with operational regulatory requirements in collaboration with client's Compliance
   Office
9. Evaluate third party risk prior to onboarding, through contract and review security risk assessment reports
   performed by the security office
10. As Ethics Officer, accountable for compliance to Code of Conduct in liaison with Heads of HR and Legal
11. As Resilience officer, accountable for ensuring adequacy of continuity and disaster recovery plans through
    gap analysis
12. Provide tailored risk management training to in house risk management team, risk champions, control
    owners and general awareness to the rest of the organisation

1. CIA, IIA, Papers 1 and 2 completed, preparing for Paper 3
2. CRISC, ISACA, November 2022
3. AIRC, LOMA, March 2021
4. BCM Implementation, BIS, 2011
5. Bachelor of Science, 1999