Risk Lead - Operational Risk and Vendor Risk Management

Job Description
About Us : Network International is the largest Financial Technology company in Middle East and Africa. Payments is our core business where we provide services in more than 50 countries – UAE, Jordan, South Africa, Egypt are some of our key markets. Apart from payments, we provide services on Data [SM1] and Insights, Lending, Insurance, Risk Solutions, etc. Our core customers are businesses at every scale and segment, though recently we are growing in direct to consumer card segment as well.
Our EVP : At Network International, we always stay ahead. . In the fast-paced world of financial services, we thrive on innovation, agility, and purposeful collaboration. We invest first in our people, empowering you to make bold decisions, learn fast, and grow your expertise alongside industry leaders. Here, solving complex problems means more than using cutting-edge technology; it’s about creating meaningful value for our customers, together. We foster a culture where trust, accountability, and achievement go hand in hand—because success isn’t just a goal; it’s how we work, every day, as one team
Job Purpose

• To facilitate the embedding of the Group’s Operational Risk and Vendor Risk Management frameworks through effective assurance, oversight, and governance practices.
• The role is responsible for developing, implementing, and maintaining vendor risk management arrangements, while supporting the business in identifying, assessing, mitigating, and monitoring operational and third-party risks across the end-to-end lifecycle.
• This role also contributes to strengthening risk culture, control effectiveness, and regulatory compliance while enabling safe achievement of business objectives.
  

Responsibilities

• Facilitate the implementation, maintenance, and continuous enhancement of the Group Enterprise Risk Management, Operational Risk Management, and Vendor Risk Management frameworks and programmes.
• Act as a subject matter expert and trusted advisor to Business and Support Functions on operational risk, vendor risk, and governance matters, promoting strong risk management practices and a consistent control environment.
• Oversee vendor risk assessments across the vendor lifecycle, including initial qualifying assessments, due diligence, inherent and residual risk assessments, periodic reviews, and materiality/criticality assessments.
• Perform and review operational and vendor risk due diligence in line with Group Enterprise Risk, Operational Risk, Data Governance, and Information Security policies.
• Conduct periodic vendor risk and control environment reviews based on risk tiering, including assessment of operational resilience, compliance, reputational, and data protection risks.
• Validate and challenge risk identification, risk assessments, and control effectiveness for operational processes and vendor arrangements, including control design, execution, and testing.
• Support and challenge risk owners in completing Risk and Control Self-Assessments (RCSAs), risk assessments for projects, new initiatives, products, systems, and strategic changes.
• Perform process mapping for key operational and outsourced processes to support risk identification, RCSA execution, and control monitoring.
• Review standard operating procedures and process documentation to identify procedural gaps and recommend compensating or preventive controls.
• Track, monitor, and follow up on open risk issues, audit findings, and vendor-related remediation actions, independently assessing the adequacy and quality of closure.
• Ensure appropriate screening, enhanced due diligence, and compliance reviews are conducted by relevant teams (e.g., Compliance) for vendors, including UBOs, senior management, and personnel with access to critical systems or confidential data.
• Ensure vendor owners assess vendor capabilities, experience, geographic coverage, service complexity, customer interface, and system connectivity, and that appropriate mitigating controls are implemented.
• Support execution of the Group Risk Assurance Plan through operational and vendor risk thematic reviews, reporting findings and monitoring timely remediation.
• Facilitate operational and vendor risk reporting to senior management, committees, and other stakeholders.
• Support the implementation and ongoing management of the Group’s risk management systems and tools.
• Develop and deliver operational and vendor risk training, awareness sessions, and guidance materials to promote a strong risk culture across the Group.
  

Qualifications

• Bachelor’s or Master’s degree in Risk Management, Finance, Management Information Systems, Business Administration, or a related discipline.
• Minimum 8 years’ experience in Banking, Financial Services, Payments, or Risk Management, with exposure to operational risk, vendor/third-party risk, procurement and governance frameworks.
• Strong understanding of operational risk tools and methodologies, including RCSA, KRIs, loss event management, and thematic risk reviews.
• Hands-on experience in vendor risk management, due diligence, control assessments, and lifecycle risk oversight.
• Exposure to banking operations, payments, card processing, merchant acquiring, and technology-enabled services.
• Good understanding of international standards and frameworks (e.g., ISO, COSO) and regulatory expectations related to operational and third-party risk.
• Strong analytical, problem-solving, and risk assessment skills, with the ability to challenge effectively and constructively.
• Excellent communication, negotiation, presentation, and report-writing skills.
• Strong interpersonal skills with the ability to work collaboratively across functions and influence stakeholders.
• High proficiency in spreadsheet tools, including advanced formulas, macros, and data analysis techniques.
• Pro-active, self-driven professional able to work under pressure, manage multiple priorities, and take ownership of issues through to closure.
• Customer-focused, resilient, and adaptable with a strong sense of accountability and attention to detail.

<