Senior Consultant Risk and Controls - GRC

About the position

As a Senior Consultant, you will work on strategic programs dealing with complex, industry-specific requirements in the areas of Governance Risk & Compliance (GRC) and Controls, while further deepening knowledge in your respective area of specialization. You will lead streams, independently deliver high quality solutions and actively build key client relationships. You will also guide and mentor junior team members.

Responsibilities

• Lead streams within engagements at Financial Services firms to address some of the pressing issues faced in the industry related to Governance Risk & Compliance (GRC) and Controls.
• Lead delivery streams of GRC projects, including those involving Risk Governance, Risk Assessments, Controls Management (Assessment, Testing, Remediation), IT Risk Management, 3rd Party Risk Management, Operational Resilience, Cybersecurity Risk.
• Lead client and engagement teams in successfully delivering technology solutions to automate or improve GRC using vendor solutions such as MetricStream, RSA Archer, IBM OpenPages ServiceNow IRM, Fusion Risk, Workiva.
• Collaborate with business and technology stakeholders to define technology strategy and roadmap, create work plans, define business requirements, analyze data needs and help drive QA strategy.
• Conduct interviews / workshops / walkthroughs with subject matter experts and process owners to elicit and document requirements.
• Collaborate with cross-functional teams across the client organization and Infosys on technology transformation programs and initiatives.
• Manage and minimize engagement risk by proactively identifying issues and recommending courses of remediation.
• Support business development activities by contributing significantly to proposals and developing propositions.
• Build client relationships towards expanding the footprint within the client organization.
• Understand new regulatory changes in the area of GRC and be the thought leader through communication across Infosys team and client alike.

Requirements

• Bachelor's degree or foreign equivalent required; MBA or advanced degree preferred.
• 7+ years of experience in Financial Services with at least 4 years of experience in GRC or Operational Risk or Internal Controls.
• Knowledge of industry frameworks like ISO 27001, NIST CSF, NIST AI Risk Management Framework (RMF), SOC 2, DORA, COBIT, COSO, and CIS benchmarks.
• Advanced presentation and interviewing skills with experience facilitating meetings and leading workshops.
• Excellent writing skills with the ability to write Business Requirements Documents (BRDs) and PowerPoint presentations.

Nice-to-haves

• MBA or equivalent advanced degree, Industry recognized certifications like GRCP, CGRC etc.
• Experience of leading programs with stakeholder engagement is a key requisite to achieving successful program/project delivery.
• Experience playing roles in the intersection of business and technology implementing GRC solutions in the FS space will be an added advantage.
• Proven ability to deliver under tight deadlines and challenging constraints.
• Ability to collaborate within the firm and leverage existing resources.
• Demonstrate thought leadership, ability to conceptualize and drive new solution/service offerings and take them to market.
• Ability and willingness to work as part of a cross-cultural team including flexibility to support multiple time zones when necessary.

Benefits

• Medical/Dental/Vision/Life Insurance
• Long-term/Short-term Disability
• Health and Dependent Care Reimbursement Accounts
• Insurance (Accident, Critical Illness, Hospital Indemnity, Legal)
• 401(k) plan and contributions dependent on salary level
• Paid holidays plus Paid Time Off