We are seeking experienced professionals with strong expertise in
Non-Financial Risk Engineering (NFR), particularly in
Risk and Control Self-Assessment (RCSA) and
Control Frameworks. The ideal candidate will combine engineering or technical business analysis skills with hands-on knowledge of
AI tools (including Windsurf) to strengthen operational risk management capabilities across the organization.
Key Responsibilities
- Design, implement, and maintain Non-Financial Risk (NFR) frameworks, ensuring alignment with organizational risk appetite and regulatory requirements.
- Conduct Risk and Control Self-Assessments (RCSA), identifying gaps, weaknesses, and opportunities for improvement.
- Develop and enhance control frameworks to mitigate operational risks across technology and business processes.
- Leverage AI tools (e.g., Windsurf) to automate, optimize, and improve risk monitoring, reporting, and remediation activities.
- Partner with cross-functional teams (engineering, risk management, compliance, and business stakeholders) to embed risk controls into technology solutions.
- Act as a Subject Matter Expert (SME) in operational risk, providing guidance and training to engineering and business teams.
- Translate complex risk and control requirements into actionable technical solutions and workflows.
Required Skills & Experience
- Educational Background: Engineering degree (Computer Science, IT, or related field preferred).
- Core Expertise:
- Strong knowledge of Non-Financial Risk Engineering, including RCSA and control frameworks.
- Hands-on experience with AI tools, particularly Windsurf, and familiarity with other emerging AI-driven risk management platforms.
- Technical & Analytical Skills:
- Ability to analyze complex risk scenarios and design effective control mechanisms.
- Strong problem-solving and automation mindset, with exposure to AI/ML applications in risk management.
- Business Analysis / SME Skills:
- Experience working as a Tech BA or SME in risk-related projects.
- Ability to bridge the gap between technical teams and business stakeholders, ensuring risk frameworks are practical and effective.
- Soft Skills:
- Excellent communication and stakeholder management skills.
- Strong organizational and documentation abilities.
- Proactive mindset with the ability to work independently and collaboratively.
Preferred Qualifications
- Prior experience in financial services, consulting, or technology risk functions.
- Exposure to regulatory frameworks related to operational risk.
- Familiarity with automation tools, data analytics platforms, or AI-driven risk solutions beyond Windsurf.
