Head of Business Risk and Resilience

Some careers open more doors than others.

If you’re looking to unlock new job opportunities, take a look at the possibilities right on your doorstep here at HSBC.

The Risk and Resilience function plays a pivotal role in ensuring that GCOO and Operations across the Group operate within risk appetite, ensuring efficient and effective resilience, risk, and control management.

It will provide visibility of risk and resilience vulnerabilities, remediation activity, and strategic guidance regarding potential exposure and impacts, including internal and external environmental changes, and embed robust risk management processes and strategic outcomes globally across all GCOO teams.

The function encompasses Controls Office, Operations Resilience, Protective Security, BCIM, Third Party Risk management, and Servco.

The India Head of Business Risk & Resilience will lead the function across all these disciplines for India, driving a high-performing culture, consistent control standards, and improved/automated processes. It will partner with all GCOO leaders to embed control and resilience across GCOO as well as define and embed resilience practices and standards for India.

The role holder has direct accountability in effectively managing adherence to the Non-Financial Risk Framework across India for IWPB and Infrastructure, leading risk and control remediations (as required), and leading and influencing conversations with Senior Management and Regulators.

This role acts as the First Line of Defence and ensures the bank operates within its risk appetite by providing specialist risk and control knowledge and insights, promoting the right risk and control culture and decision-making across the entities, e.g., the Businesses and Group Infrastructure, that operate in the entity, as applicable.

This role identifies trends to anticipate future developments in the risk and control environment, positively challenges less effective controls, tasks, and behaviors.

·Active and engaged member of the India Chief Operating Officer (COO) senior leadership team. Provide leadership, drive the people agenda, develop/influence, and role model HSBC values.

·Define and execute HSBC’s global business risk and resilience strategy, aligning with regulatory expectations and business goals.

·Drive a risk-aware culture, ensuring proactive identification and mitigation of operational, third-party, and security risks.

·Support the India COO to effectively manage the risk and control environment, providing insights on control effectiveness and emerging risks — a key priority in driving the bank’s strategy, coordination, and the development and implementation of HSBC’s governance and organizational design and processes, as well as managing the India COO’s commitments across governance forums.

·Develop strong advisory controls relationships with the Chief Operating Officer and Co-Chief Executive Officers for India, as well as leaders across Business and Infrastructure teams. Represent risk and controls management to Executive Management and Board members in India as needed.

·Engage with regulators and industry bodies to shape and influence resilience standards and emerging risks.

·Responsible for managing xLoB / xEntity Operational Resilience deliverables to meet HSBC India COO, Chief Risk Officer, and Co-Chief Executive Officer’s accountabilities.

·Accountable to HSBC India and play a key role in supporting the transition of Operational Resilience from Programme delivery to Business as Usual (BAU).

·Take ownership for establishing the new Business Risk functional capabilities, focusing on outcomes, proactive risk mitigation, and investment and benefits returns.

·Drive the development and adoption of technology techniques to enhance the bank’s approach to mitigating non-financial risks.

·Drive connectivity and collaboration across the enterprise to foster integrated resilience capabilities, including Controls, Business Continuity and Incident Management, Protective Security, and all Non-Financial Risks.

·Oversee the Chief Control Office, embedding a robust risk and control framework across GCOO.

·Oversee Group third-party risk versus appetite, working with Business and Infrastructure Non-Financial Risk teams on remediation of Third-Party risk.

·Oversee readiness across the ServCo Group entities for resolution and recovery events, in line with regulatory requirements.

·Deputise for the India COO in various risk and control forums as needed.

·Strong leadership, stakeholder management, resilience, and influencing skills up to board-level executives, with outstanding interpersonal and communication skills to effectively and confidently communicate at all levels. Essential for navigating Business and Infrastructure stakeholders to achieve desired outcomes.

·Cultivate a positive controls culture across the India COO leadership team and franchise to increase risk and control awareness and capability.

·Assess and build the necessary skills and capabilities to manage the dynamic risk and control landscape.

·Understand and translate strategy from a risk and control perspective across India, including aligning directions. Demonstrate exceptional interpersonal and management skills with experience managing diverse projects across multiple teams and stakeholders of different levels, cultures, and operating models.

·Role model a positive work culture based on respect, integrity, creativity, and collaboration, leading to increased productivity.

·Proven ability to develop and manage high-performing teams with a clear vision, focused on executing strategic change and delivering tangible customer outcomes.

·The jobholder will continually reassess operational risks associated with the role and business area, considering economic or market changes, legal and regulatory requirements, operating procedures, management restructuring, and technological impacts.

·This will be achieved by ensuring all actions consider the likelihood of operational risks and address concerns appropriately.

·The role holder will adhere to and demonstrate adherence to internal controls by following procedures, maintaining records, and implementing audit and regulator recommendations promptly.