We are looking for

Operational Risk Permanent Control Officer (11 months contract)

Apply REF: ITO001729

Department description

The Operational Risk & Permanent Control Officer is responsible to undertake the Operation Risk and Permanent Control tasks within the COO perimeter, including but not limited to regular control of controls, periodic local, regional and global reporting, risk assessments, operational incidents review and follow-up, and management of outsourcing initiatives and SLAs.

The Operational Risk & Permanent Control Officer role is centered on:

  • Performing Risk Assessments on the underlying activities (risk mapping, quality of associated controls etc.), to be reviewed every 12 months
  • Document control plans for each activity, perform control testing, report results, organize regular reviews to set action plans for remediation where relevant
  • Consolidate monitoring and analysis of historical incidents and related action plans
  • Follow up on the implementation of audit findings / recommendations assigned to the COO scope

Purpose of Department

COO Office is a key department that supports the proper execution of CIB ITO strategy in Australia and the APAC region. It supports the application of general policies and best business practices, in accordance with CIB guidelines and local statutory requirements across all departments.

COO Office department is responsible for:

  • Assisting in the performance and ongoing support of Operational Risk controls and periodic Permanent
  • Controls reporting
  • Monitoring the management of operational incidents
  • Following up internal and external audit findings and recommendations
  • Identifying process improvement and implementing strategic changes across the organization, following
  • formal Project Management methodologies
  • Supporting the preparation of Territory Operational Risk and BCP Committees
  • Coordinating outsourcing requests and executions of Service Level Agreements between BNPP Australia
  • Branch and other parties
  • Assisting in the implementation of new systems or enhancements of existing systems


The role requires working closely with the business lines and functions to:

Direct responsibilities

  • Perform or review independent regular first level controls (LoD 1c), i.e. control of controls
  • Monitor the frequency and quality of the first-level controls performed (LoD 1a/1b)
  • Assist in the definition and update of Operation Risk Controls and Permanent Control framework
  • Assist in the preparation of the annual Risk Control & Self Assessments (RCSA)
  • Report and follow up on operational incidents and their related action plans
  • Ensure all internal procedures are regularly reviewed and updated
  • Follow up on the implementation of audit findings / recommendations Prepare and present periodic local, regional and global reports
  • Work effectively with representatives of all departments, from Front Office to Operations and IT, in different locations through good interpersonal and communication skills
  • Comply with regulatory requirements and internal guidelines
  • Maintain comprehensive understanding and documents of the businesses and operational processes and their systems and interfaces

Contributing responsibilities

  • Contribute in the Monthly Operational Committee
  • Contribute in the internal committees, notably the Internal Controls Committee, Incident Review meeting and Outsourcing Management Committee

Technical & behavioural competencies

  • Technical Attributes
  • Solid knowledge and qualification in Operational Risk and Permanent Control
  • Strong business analysis experience would be beneficial
  • Personal Attributes
  • Client focused, with confidence dealing with business lines and functions on a daily basis
  • Analytical, with strong problem solving skills
  • Good interpersonal skills and team player
  • Attention to details
  • Methodical and organized, ability to multi-task
  • Reliable and self-motivated, take ownership of and be accountable to assigned tasks
  • Strong aptitude and interest in the financial sector

Qualification & experience

Candidates must possess tertiary qualification, preferably majoring in a quantitative discipline, with 1 to 5 Years of Operational Risk and Permanent Controls experience

Primary Location: AU-NSW-SydneyJob Type: Fixed TermJob: COMPLIANCE AND PERMANENT CONTROLEducation Level: Bachelor Degree or equivalent (>= 3 years)Experience Level: At least 3 years Reference: ITO001729