JOB DESCRIPTION

The Senior Risk Associate position requires an individual who has a risk, legal, audit, and/or compliance background. The Senior Risk Associate position will be tasked with a range of responsibilities to include interaction with several departments throughout Cboe to coordinate risk and project related activities in order to assist in the implementation of Cboe’s Enterprise Risk Management Framework. The Senior Risk Associate will work as required with local staff responsible for the risk function at local market centers in the APAC region.

JOB REQUIREMENTS

• Knowledge of enterprise risk management concepts including three lines of defense model, risk analysis (including likelihood and impact), risk appetite and risk governance.
• Knowledge and experience with a range of security/risk management governance, guidance, compliance documentation such as NIST, PCI-DSS, ISO, SOC-2, COSO.
• Knowledge of the Australian and Japanese financial services industry generally and specifically from a regulatory, product, operations, or risk viewpoint.
• Proven use of strategic thinking and analytical skills to identify emerging trends and risk areas
• Experience delivering results in a complex business environment through a commitment to quality outcomes, managing risks, and the efficient use of resources
• Superior writing and drafting skills, and the ability to communicate in a clear, concise and persuasive manner
• Experience in advising on complex transactions or projects requiring critical thinking and judgment gained working in the relevant industry, regulatory, legal or academic environment
• Minimum Years of Work Experience: 5
• Minimum Education Requirement: Bachelor Degree

• Understand and enhance Cboe’s Enterprise Risk Management Framework, including policies, procedures, and tools used to identify, assess, evaluate, mitigate, and monitor company-wide risks.
• Advise management in the identification, assessment, measurement, and monitoring of enterprise risks. Counsel management on risk appetite, risk tolerance, and risk mitigation alternatives and lead the evaluation of mitigation strategies.
• Develop and maintain cross-functional relationships with Senior Management, Legal, Compliance, Technology, Information Security, and Internal Audit, partnering together to ensure the optimal execution of Cboe’s three lines of defense.
• Continuously maintain and monitor Cboe’s enterprise risk and control portfolio, keeping the Chief Risk Officer and subsidiary Risk Owners informed of issues and changes. Monitor progress on corrective actions and controls.
• Apply industry-standard enterprise risk management methods to quantify, evaluate, and report risk in an actionable manner.
• Provide advice/challenge related to any operational key business process (e.g.: business continuity management strategy, operational resiliency, quarterly business review, incident management and etc)
• Collaborate with project managers to provide risk management oversight for projects and ensure risks are properly identified, assessed, and managed
• Aiding the business in carrying out regular control self-assessments, to identify/evaluate operational risks linked to controls and recommend improvements as necessary
• Assess risk events or circumstances in terms of likelihood and magnitude of impact.
• Perform applicable risk/vendor management activities related to corporate acquisitions and current/new 3rd party vendors.
• Collaborate with other risk management and internal audit teams to ensure a comprehensive and integrated approach to risk management
• Stay up-to-date on industry trends, regulations, and best practices in operational risk management and incorporate this knowledge into the organisation’s risk management framework
• Performs other related duties as required or requested.