The Deputy Director – IT Ops Risk Management is part of the IT Operations team within the PepsiCo CTO Organization at Hyderabad.
PepsiCo has a multivendor hybrid outsourced model for its Infrastructure IT operations. The PepsiCo IT Operations team works with various businesses, in-house IT teams, IT partners, and OEMs to maintain high-quality services around the clock. The Deputy Director – IT Ops Risk Management would work with in-house and partner resources and will assist in the maintenance, development and implementation of the Operational Risk Management framework. The person will also provide a robust second Line of Defence challenge to ensure the wider effective identification and management of operational risk and control weaknesses by the businesses and support functions.
As a result of rapid growth, the global nature of the business, and the history of multiple outsourcing arrangements, PepsiCo’s landscape needs to be more cohesive, with numerous duplications in data and tools and low process adherence. One of the critical expectations of this role is to be streamlined and drive large-scale change forward. This role will need to quickly understand the current landscape and develop the road map to achieve the desired future state.
>Lead the implementation of enterprise-wide operational risk strategy working closely with all the business and support functions.
>Critically evaluating the organization wide policies and processes from IT operational risk perspective.
> Act as the first point of contact for business functions / auditors/other stakeholders including regulators for all IT operational risk management related matters.
> Analyse incidents reported, get the Root cause analysis (RCA) done and ensure implementation of corrective and preventive actions.
> Formulize, monitor and report Key Risk Indicators for each function of the organization and to propose Risk Mitigation Plans for KRI breaches.
> Analysis and reporting of Operational Loss events. • Monitoring conduct of quarterly Risk & Control Self Assessments (RCSA) testing by first line of defense for all functions. To facilitate the RCSA by active participation and verifying the results of such assessments.
>Timely follow-up on action plans and open audit items from Operational Risk management (ORM) reviews.
>Recommend risk mitigation plans/ controls to stakeholders and ensure implementation.
>Ensure all inherent risks, controls thereon and residual risks are well identified & mapped in the Risk Control Matrix.
> Bachelor’s degree Computer Science, Information Systems, or other related field or equivalent experience.
>Solid technical and functional knowledge of IT Operations.10+ years of significant work experience of large scale Operations Management in complex Infrastructure environments and must be ITIL V3 Expert.
>Excellent knowledge and experience of operational risk management and its application within IT Operations.
>Experience in undertaking front to back RCSAs, Risk Acceptance, Issues & Actions and Incident Management.
>Proven ability to understand, identify, analyse and communicate clearly the operational risks within processes.
>Proven experience in applying legal/regulatory guidance into solving practical problems.
>Ability to facilitate smooth communications between functions and Sectors where required.
>Experience in Thematic Reviews, Controls Testing & Assurance, Product Governance and delivery of training.
>Expert level knowledge of using ServiceNow, Power BI Reporting development
>Solid understanding of performance metrics, KPI’s, statistical calculations, machine learning, and correlation.
>Data and analytics