Nfr Physical Disruption

**NFR Physical Disruption - VP - Italy**:
**Job ID**:R0338269**Full/Part-Time**:Full-time**Regular/Temporary**:Regular**Listed**:2024-06-19**Location**:Milano**Position Overview**:
**The Division**

The Risk division is responsible throughout the Group for management and control of all Credit, Market and Non-Financial Risks, and the function of the Risk division consists in managing, reinforcing and protecting the Bank’s capital, integrity and reputation by making a solid structure and supportive infrastructure available.

The purpose of the NFRM / Operational Risk Management (ORM function is to ensure that the banks Non-Financial Risk exposure is adequately managed in-line with the group wide risk appetite and NFRM framework. To achieve this, the NFRM function requires:

- Risk Managers with the experience, seniority and tools to assess complex risks and intervene where they lie outside the bank’s risk appetite.
- A comprehensive, integrated, simple and easy to use NFR Framework with supporting technology that assists risk identification, assessment and remediation.
- Strong understanding of the businesses combined with regular engagement which would allow NFRM to provide support, review and challenge in line with the 3 Lines of Defence Model.
- Proper consideration of emerging risks, rather than just current issues.
- Effective governance combined with supporting MI that facilitates decision-making.

NFRM is a matrix organization with business / region and functional specialist axes.

**The Role**

The role a NFR **Physical Disruption **risk Manger has within NFRM is to lead work on one of five risk clusters according to the 3 Lines of Defense model and the NFR mandate. Specifically, a Physical Disruption Risk Manager t will be expected to provide independent oversight of the implementation of the Group's NFRM Framework within the Risk Cluster and conduct the assessment of material risks and/or key controls (as required). This role also requires providing the necessary input to other NFRM Clusters and work closely with Global Corporate Security, Health and Safety and Building Engineering structures. Reporting to head of Physical Disruption, to inform their challenge, approval or veto of the NFRM Framework implementation (e.g. minimum standards, identification of material risk and proposed key controls).

**Responsibilities**:
This will involve the following NFRM activities:

- Ensure all policies and Minimum Control Standards for Physical Disruption (PD) are in place, implemented on the ground and reviewed in line with Policy Portal requirements.
- Be the main working level point of contact for Physical Disruption Risk on policy issues and for audit input as they relate to Physical Disruption matters.
- Implementing MCS, control gap review and monitoring
- Group Structured Scenario execution
- Build and develop relationships with key stakeholders across the seniority spectrum and the bank
- Setting PD Group Risk Appetite, 4-Zone Risk Appetite monitoring, development of NFRC Risk Appetite metrics
- Involvement in Regulatory Engagement (JST/ECB)
- Control Function Senior Management engagement
- Will be asked in MB/CRO/NFRM Management engagement
- Kick off Control assurance - operating effectiveness and Design Effectiveness
- Engagement with central teams of CS, GRE, HS
- Review, challenge and KCCC governance for new key controls / changes to existing controls
- Participate in the Governance - AFC ExCo, ATM Blast SteerCo inputs on quarterly basis,
- Participate in Questionnaires (CAQ) for Physical Security in Supplier Onboarding
- Work with head of Physical Disruption to implement the new exposure based taxonomy
- Engage in the RTC Framework Adherence
- Attending monthly Third Party Control Forum organized by TPM and NFRM Third Party Security (TPS) Oversight Council meetings
- Refresh of Inherent Risk (IRQ) & Control Assessment
- RTC approval for Physical Security CAQ escalations, overrides and other queries in Supplier Onboarding - Ad Hoc
- Div/Region RA monitoring/metrics Physical Disruption + ESG (Pharos)

Experience
- Min of 10 years’ experience in a similar role within financial services
- Significant experience in a business, risk management or other relevant control function, ideally at a global financial institution or other relevant peer
- In depth understanding of selected non-financial risks by demonstration of having managed them either in the 1st or 2nd line of control
- A robust understanding of Non-Financial Risk Management principles and practices
- Knowledge of DB countries regulatory landscape as well as the risk profile
- Demonstrable experience of developing strong working relationships with stakeholders to facilitate successful risk management within the 3 Lines of Defence model
- Worked with Senior Stakeholders within a high pressure dynamic environment
- Experience in leading projects or working closely with project managers in carrying out large and/or complex initiatives
- Expe