Risk Management Officer - (Kuwaiti Nationals)

Bede is a Zain Group joint venture Fintech Company established in 2016. Our mission is to foster an inclusive financial ecosystem by providing a platform that delivers practical fintech solutions, responding to the real needs of people and businesses alike. We are seeking an experienced Operational Risk Officer to lead the implementation of the Operational Risk Management (ORM) framework, ensuring compliance with regulatory requirements and alignment with Zain Group standards.

• Prepare monthly risk packs to Management/Risk Committee top risks, KRI trends, incidents, overdue actions, and forecast vs. appetite; submit consolidated reporting to Zain Group Risk per agreed templates and cycles.
• Conduct operational risk scenarios (fraud spikes, reconciliation breaks, major outage), estimate exposure, and propose mitigations/insurance; coordinate with group insurance/risk financing when relevant.
• Maintain policies/standards, risk taxonomy, and risk appetite; align with Basel/ISO 31000/COSO and Zain Group Risk policies & minimum standards.
• Define KRIs/KCIs for high-risk processes (onboarding/KYC, settlements, reconciliations, chargebacks, refunds, IT change, access management); automate dashboards and trigger thresholds; feed group-level KRI packs as required.
• Operate the incident register, perform root-cause analysis (5-Whys/Fishbone), quantify losses/near misses, and coordinate remediation & lessons learned; elevate notifiable events to Zain Group per group thresholds and timelines.
• Refresh policies/SOPs, deliver staff training, and promote speak-up culture; embed Zain Group risk culture initiatives locally.
• Deliver quarterly group risk submissions (top risks, KRI dashboard, loss data, issue status) and ad-hoc escalations for high-severity incidents.
• Coordinate with Internal Audit and Zain Group Risk for thematic reviews and follow-ups.

• Hands-on with RCSA, KRI design, control testing, and incident RCA.
• Strong Excel/Google Sheets; working knowledge of SQL or Power BI/Tableau a plus.
• Familiarity with ITGCs, change management, user access, and cloud/SaaS basics.
• Frameworks & regs (nice to have): Basel II/III OpRisk, ISO 31000, COSO, ISO 27001/PCI DSS awareness; local central bank expectations for e-money/PSPs.
• Certifications (plus): ORM, FRM (Part I), CRMA/CIA, CISA, CAMS.

• 2–5 years in operational risk, internal control, or audit within fintech, payments, bank, or PSP; prior exposure to group risk/governance a plus
• Bachelor’s in Finance, Accounting, Information Systems, Engineering, or related.
• Strong English; Arabic