Description

You will build and operate the enterprise risk framework across financial and non-financial risks, ensuring clear governance, effective risk assessments, and inspection-ready documentation. The role supports senior management and the Board with actionable risk reporting and disciplined issue remediation.

Requirements

• Bachelor’s or Master’s degree in Risk Management, Finance, Business, or a related field
• 5+ years in enterprise/operational risk management within regulated financial services
• Experience with payments/EMI/PI and/or crypto/fintech risk environments is a strong advantage
• Strong facilitation and stakeholder management, with the ability to challenge constructively and drive outcomes
• Excellent written communication and ability to produce concise, Board-ready materials
• Fluent English required; French is an advantage

Responsibilities

• Implement and maintain BBSA’s ERM framework, including risk taxonomy, risk appetite statements, risk register, and escalation processes
• Coordinate risk governance forums and prepare management and Board risk reporting packs (KRIs/KPIs, trends, and key decisions)
• Facilitate periodic risk and control assessments across BBSA functions (Operations, Treasury, Compliance/AML, ICT, Outsourcing)
• Support business change and new product risk assessments, ensuring risks are identified, mitigated, and documented
• Operate the issue management lifecycle: logging, root cause analysis, action plans, tracking, and validation of closure
• Partner with InfoSec and Compliance on operational incidents, control weaknesses, and regulatory findings
• Support outsourcing risk oversight, including concentration risk considerations, critical provider monitoring, and exit planning in collaboration with the Outsourcing function
• Ensure third party risk is consistently assessed and reported within the ERM framework
• Contribute to risk policies, procedures, and training; promote risk awareness and pragmatic control ownership across the business
• Drive continuous improvement of risk metrics, reporting quality, and governance effectiveness