Director, Operational Risk and Controls Job Listing at Mastercard in Purchase, NY (Job ID R-217824)

Description

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Director, Operational Risk and Controls Overview:

The Mastercard Risk team is looking for a Director of Operational Risk and Controls to support the execution of our Operational Risk Management strategy, framework and program. This is a key role within the Risk Organization's Operational Risk and Controls team reporting to the SVP, Operational Risk and Controls. The ideal candidate will have operational risk and audit experience and have executed Risk and Control Self Assessments successfully within large organizations.

Role

The Director of Operational Risk and Controls is responsible for executing against the strategic direction, application and optimization of the organization's operational risk and control framework on a global scale. This role partners with key stakeholders across the organization to ensure they identify, assess, and effectively manage operational risk associated with internal processes and key business services all of which are foundational to Mastercard's ability to deliver on its strategic goals, corporate objectives and core values.

Role:
• Deliver on Operational Risk Management project plan milestones and initiatives to enhance and further embed the program within the organization
• Lead and manage cohesive and centralized reporting of operational risks, controls and mitigations for senior management updates
• Drive efforts to identify, assess, and prioritize key operational risks and controls
• Partner with the business on executing risk assessments (RCSAs) to identify and evaluate potential risks and vulnerabilities for targeted areas of importance and key areas of risk
• Develop and deliver operational risk management training to be rolled out
• Stay current on risk management practices and external operational risk events
• Drive continuous enhancements across the program including: process improvements, simplification projects, efficiencies, and automation in execution where possible
• Work with business owners to ensure proper monitoring and assessment of internal controls
• Lead the development of an internal controls library with control framework tracking and reporting providing value added insights on gaps, redundancies and areas of heightened risk
• Support an enterprise-wide approach to incident management leveraging existing practices and contemplating best practices for a more efficient and effective process
• Provide guidance to business units on root cause of incidents and on implementing effective risk mitigation procedures. Ensure robust tracking, monitoring and reporting for incidents, control gaps, areas of heightened risk and necessary remediation actions
• Foster a risk-aware business culture by delivering risk education and awareness
• Encourage a proactive approach to operational risk identification and management at all levels
• Engage with key stakeholders to ensure alignment and collaboration on operational risk intiatives and internal control reviews
• Establish procedures, reporting, metrics and dashboards on Operational Risk and Controls for reporting to senior management, the ERC and the Risk Committee of the Board
• Lead workshops and working groups on Operational Risk and Control initatives

All About You:
• Significant prior relevant operational risk and controls experience
• Bachelor's Degree in finance, risk management, business, or a related field
• Professional Certifications preferred (e.g. CPA)
• Extensive Operational Risk and Internal Control experience in a large organization
• Payments and Financial Services expertise desired
• External Audit and/or Internal Audit experience required
• Demonstrated ability to work collaboratively across departments
• Led efforts to identify, assess, and prioritize operational risks across an organization.
• Proven success implementing RCSA and Risk and Control programs, frameworks or processes
• Knowledge of GRC and Dashboarding tools preferred (e.g. Archer, Open Pages, Tableau etc)

Corporate Security Responsibility

Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines. In the US, Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. If you require accommodations or assistance to complete the online application process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

In line with Mastercard's total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary based on location, experience and other qualifications for the role and may be eligible for an annual bonus or commissions depending on the role. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance), flexible spending account and health savings account, paid leaves (including 16 weeks new parent leave, up to 20 paid days bereavement leave), 10 annual paid sick days, 10 or more annual paid vacation days based on level, 5 personal days, 10 annual paid U.S. observed holidays, 401k with a best-in-class company match, deferred compensation for eligible roles, fitness reimbursement or on-site fitness facilities, eligibility for tuition reimbursement, gender-inclusive benefits and many more.

 Apply on company website