Principal Associate, Risk Management

Voyager (94001), India, Bangalore, Karnātaka
Principal Associate, Risk Management
Capital One - Principal Associate, Risk Management
At Capital One, we're building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking.
At Capital One India, we are at the cutting edge of solving fundamental business problems using advanced data methodologies, statistics, and machine learning algorithms. We analyze data to derive valuable business insights, make decisions, and develop innovative and patentable products.
As a Principal Associate, you will have dynamic responsibilities associated with Capital One India's Risk Management team, helping to ensure a timely and accurate month-end risk reporting, in addition to managing Policy documents and in-house Six-Sigma based framework - forming an integral part of the job.
We are looking for a Principal Associate to handle the Risk Management activities with a demonstrated ability to work well in teams, develop new ideas, and take ownership of the initiatives. Would you like to work in a collaborative environment where your contributions are recognized and rewarded, all the while having a work-life balance? If so, opportunity for professional and personal fulfillment in a dynamic, progressive organization awaits you at Capital One! We are seeking a dedicated and disciplined process professional with expertise in process improvement and a proven track record of optimizing company processes to achieve resource and and time savings. This individual must possess strong analytical skills, exceptional attention to detail, and the adaptability required for a dynamic agile environment, while also demonstrating the ability to effectively communicate and influence partners across all organizational levels and functions.
Responsibilities:
Manage the India Risk Management team consisting of Risk and Assurance activities to ensure

• Timely completion of all activities
• Adequate cross training and backup
• Completion of asks from India Leadership
• Strategic planning for the Risk Management function

PSP - Governance (Policies, Standards & Procedures)

• Review and ensure compliance with the Enterprise Policy Program standard
• Report on creation of new documents, renewals/ expiry of existing documents and Standard Adherence Assessment conducted by CPO (Corporate Policy Office)
• Maintain repository of India wide documents
• Influence updates to policies, standards to enhance risk management activities
• Maintain Risk Management PSPs and SOPs and draft new documents as the team expands the scope of work

Review and Alignment with Enterprise Risk Management Framework

• Conduct a gap analysis of India Risk Management processes against Enterprise Policies, Standards, and Procedures (PSPs)
• Propose and execute a plan to align India processes with Enterprise requirements, focusing on:
• Automation and standardization of risk reports
• Adoption of enterprise risk management tools
• Development and implementation of risks, controls, and mitigation plans as necessary
• Project manage and coordinate execution efforts with various internal teams (e.g., DataLabs) and US Business Risk Office (BRO) stakeholders

Issue and Incident Management

• Develop and implement incident response plans aligned with Enterprise practices
• Lead cross-functional teams during an incident to rapidly detect, contain, and resolve issues while managing stakeholder communication
• Facilitate post-incident root cause analysis and "lessons learned" sessions to drive continuous improvement
• Prioritize issues based on business impact and ensure robust documentation for compliance and reporting
• Minimize disruption, strengthen controls, and integrate incident insights back into the broader enterprise risk management framework
• Collaborate closely with Cyber ISO to ensure CERT-In incidents are reported in MBRs and internal risk reports as and when required

Corporate Insurance

• Renew and maintain following Insurance Policies
• Worker's Compensation (WC)
• Property Insurance
• Directors and Officers Liability (D&O)
• Commercial General Liability (CGL)
• Coordinate with Insurance Broker and facilitate claims

Physical Records

• Facilitate storage and transport of physical records via third party
• Maintain Inventory Index to track the data and retention requirements by Law

Internal Audit

• Finalize the vendor to conduct annual Internal Audit
• Draft the scope and IA calendar
• Coordinate with Internal teams and facilitate the IA
• Assist in timely closure of observations/ recommendations
• Report the status and details of observations to LT

Prepare the Risk reports at India site level risk in the Enterprise Risk Management framework including key topics like

• Phishing drill report to Leadership Team (LT)
• Bi-annual Official Records (non-HR GDrive) certification and reporting to Risk Head
• Quarterly Sensitive Data Assessment and reporting to Risk Head
• Monthly Hard Disk Drive (HDD) remediation report to LT
• Monthly Iron Mountain document storage to File manages, respective LTs
• Access management (NPI) reporting to LT

Constantly work with US Risk Office and Cyber teams to expand the scope of Risk Reporting
Prepare Assurance Reports including

• • Monthly Controls execution report to owners & relevant LT
• • Coordinate with Capital One US teams and India support teams to report status on:
• IA TPM
• ABAC
• BCP testing
• Standard Adherence Assessment
• Statutory Audit

Work closely with LT to maintain artefacts (like Vision, Roadmap, etc) in the internal portal for SLQ2CQ (Capital One internal Lean - Six Sigma based framework)
Present the Risk and Assurance reports to LT in the following forums:

• Monthly Business Review (MBR) - chaired by India head, US Risk Office head and US Legal head
• Quarterly Risk, Legal & Tech Committee - chaired by India head, US Risk Office head, US Legal head and US Tech Head

Ideate and implement Risk Management framework across Risk Taxonomy and refresh framework based on evolving business needs/ risks
Partner with other Risk Management functions across the company and cross functional teams to conduct Process Level Assessments
Maintain relationships with key stakeholders to ensure timely delivery of commitment
Basic Qualifications:

• Bachelor's degree
• At least 7 years of experience in Risk domain
• At least 5 years of experience in Enterprise Risk Management
• At least 4 years experience in Enterprise Risk Management framework and implementation
• At least 4 years experience in Three Lines of Defense framework
• At least 4 years experience in risk reporting
• At least 4 years experience in Automation & standardization of reports
• At least 4 years experience in Process Mapping & Optimization

Preferred Qualifications:

• Risk management experience
• Experience in Banking or consulting
• MBA in Finance
• Financial Risk Manager (FRM) from the Global Association of Risk Professionals (GARP)
• Professional Risk Manager (PRM) from PRMIA

No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at [email protected] . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
For technical support or questions about Capital One's recruiting process, please send an email to [email protected]
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).