Job Title :
Fraud Prevention Sr. Analyst (Fintech
The Sr. Analyst role will be focused on working on a small team to proactively identify threats & risks to the security of sensitive assets, data, & information, and driving and enhancing the fraud prevention culture and risk-free environment in Concentrix, especially for newly added accounts / Process in the Fintech / Crypto-currency industry.
The incumbent would participate in executing the objectives of the Insider Risk & Compliance program to deter, detect and mitigate security & insider risks, including establishing capability to monitor and audit information for holistic risk management, establishing employee awareness and training materials, gather information for a centralized analysis, reporting and response capability.
Security Risks to be identified would include but not limited to, Procurement, Finance, Human Resources, Privacy, MIS, Operational, IT, etc.
all security risks impacting business. Required to collaborate with respective departments (IT, HR, Legal, etc.) in the Company for supporting with preparation of pragmatic action plans.
The individual would be performing Risk Assessment like Financial Risk Assessment (FRA), Global Security Assessments (GSAs) - a holistic assessment of risks being faced by the Business from Technology, Human Resources, Operations, Finance, etc.
perspective, and conducting / leading No Notice Inspections (NNIs), Fraud Prevention (FP), Helping Operation team to prepare and modify and maintaining FMEA, and performing a complete solution review for new accounts / process.
The individual would ensure that they are up-to-date with risks associated with handling of Personally Identifiable Information (PII) and Client / Contractual / Company policy requirements.
Knowledge of local privacy laws would be helpful. May assist with establishing standards to be enforced enterprise-wide that accomplish necessary requirements relative to insider risk & compliance.
Typical activities include, but are not limited to, Risk Management risk identification, risk assessments, support in development of risk action plans, risk closures, supporting investigations - case documentation, written reports, in person or remote interview of persons of interest and working outside normal business hours etc.
Governance & metrics, Executive presentations, No Notice Inspections, GSAs, and Collaboration with all teams / departments.
SKILLS & REQUIREMENTS
5 to 8 years of experience in risk management / auditing / internal controls / quality management / security management with a focus on financial FinTech & Cryptocurrency industry
Bachelor’s degree, masters preferable.
Good reporting and communications skills verbally and in writing with exceptional interpersonal skills
A great eye for details and excellent analytical and logical thinking skills.
Capability to adapt to different situations and flexible work schedule.
Ability to identify performance and opportunity gaps.
Thorough understanding of BPO environment and common business procedures, practices and standards
Excellent people management skills and team leadership
Experience in implementation of IT Security Risk Management Framework for the organization
Comprehensive knowledge of security operational processes for infrastructure and application management
Significant awareness of relevant compliance requirements and good knowledge of ISMS, Security Policies and Controls Framework implementation.
In-depth knowledge and experience in various Information security standards / regulations / best practices (ISO-27001, COBIT, PCI-DSS, GDPR, HIPAA, SOC2, etc.)
Prioritizing and executing tasks in a high-pressure environment
AREAS OF RESPONSIBILITY
1) Insider Risk & Compliance Process & Program
Participate in establishing processes & provide inputs for operationalizing the Insider Risk & Compliance program in the Fintech & CryptoCurrency
Operationalize the program by discussing Insider Risk & Compliance objectives in all relevant conversations with CNX Account leadership TLs, SMEs, HR focals, DPEs, etc.
Drive the highest Integrity and Ethical standards across the staff and the organization, and in all interaction opportunities with all CNX staff
Identify opportunities for innovation and automation wherever possible
Ensure participation in regular cadence or, team governance for achievement of required deliverables
2) Risk Solutioning for new account / process
Regular connect with Business leaders, Service Delivery, etc. to understand the business and underlying issues for new account
Ensure partnership / collaboration with Company departments for Proactive Risk Management identification, assessment, risk action planning, & closures for newly added accounts
Design and development of security policies, standards, and procedures in accordance with handing risk and compliance, if required
Educating and supporting Operation team for FMEA preparation, modification and maintenance
Working on Data security governance, data classification, data security design, security management and personal information compliance
Leading the project of education and awareness within the team for emerging industry like Crypto Currency, Artificial Intelligence, etc.
Participate / Lead Risk assessments (FRAs, GSAs, NNIs) for new accounts or assigned sites or accounts
Risk closures :
For Non-Strategic Accounts, drive open risk findings to closure for NNIs, Investigations & GSAs
For Strategic Accounts, discuss risk findings / observations from NNIs, Investigations, and GSAs with BISOs
Ensure security attestations (as required) in a timely manner
Establish and execute a robust methodology for periodic reviews aiming to highlight the gaps that exist in the processes
Analyze operational data to identify trends, root causes of business issues, and / or opportunities
Providing recommendations for corrective and preventive actions and suggesting improvement to the processes
Review and report the review results and present to management team
Escalate operational issues in a timely manner following the escalation path
Conduct floor reviews & publish reports in a timely manner
3) Incident Management & Investigations
Participate / Lead assigned investigations
Write incident reports, executive summaries, maintain records or chain of custody for all investigations assigned
Conduct incidents analytics for assigned areas within the defined timelines
Drive incidents to closure in a timely manner as required by the management
Document learnings from incidents, and circulate to relevant stakeholders
Maintain relevant records retention, legal, HR, Privacy, guidelines are followed & utilized for all activity
4) Education & Awareness
Conduct employee awareness & assist in developing training materials, and where necessary assist in specific training as required
Location : CRI Work-at-Home
Language Requirements :
Time Type :
Full time2022-12-31-08 : 00