Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team - one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Senior Analyst, Operational Resilience
Overview:
The Enterprise Resilience Team is looking for a testing & exercise expert to provide structure, requirements, and coordination across Mastercard's Enterprise Resilience Teams: Business Continuity (BC), Crisis Management (CM), Technical Recovery (TR), Resilience Planning (RP), and Operational Resilience (OR). This 'hands on' execution role is expected to work independently while receiving support, processes, and procedures from a global Enterprise Resilience Team. Some international travel may be required.
Role:
Partner with a global Enterprise Resilience team to design and implement enhanced testing and exercise capabilities.
Help embed Operational Resilience within the organization, built off the foundation of the Enterprise Resilience Disciplines (BC, CM, TR, SR).
Partner with global Enterprise Resilience staff to understand resilience and to guide standardization where appropriate.
Have a high-level understanding and comprehension of Operational Resilience regulation and guidelines, specifically the Bank of England (Bo E) regulations.
Have an awareness of other jurisdiction regulations, guidelines and proposals in relation to Operational Resilience (e.g., DORA).
Implement the Enterprise Resilience program structure to align with relevant certification standards (ISO).
Partner with team members within the Resilience Planning (RP) function to support regulatory compliance for all jurisdictions in which this business entity operates.
Assess (criticality) and clarify / confirm Impact Tolerance levels for those identified services.
Partner with Risk function to ensure required attestations to regulators and other bodies are made in line with program framework and regulatory expectations.
Partner with and hold responsibility for other BCM tasks such as business impact analysis and risk assessment coordination, business continuity planning and exercises while applying detailed QA and support for your business partners.
Ensuring business continuity levels and capabilities of third parties are compliant with risk management mandates.
Perform as a Crisis Management subject matter expert to set-up this entity with the proper construct and response model including plans and exercises (some with its' strategic partners), while supporting the Crisis Management Team during crisis.
Partner with the team's technology recovery contact to ensure system impact analysis, recovery plans and exercises are performed as designated by policy.
Train business partners on the program's roles and responsibilities to ensure all staff within the entity are knowledgeable of our requirements.
Build key business relationships within the entity and become a trusted partner to further embed a business continuity culture.
Provides consultation to management and Identify opportunities to implement process improvements.
Experience & Qualifications:
Familiarity with ITDR, Disaster Recovery, Business Continuity, Operational Resilience, or other forms of resilience testing are essential for this role
Excellent written and spoken English language communication skills are a core requirement
Minimum of three years' experience in a similar role
Detailed knowledge and experience of relevant ISO certification requirements and regulatory requirements / relevant legislation.
Industry accreditation (preferably at MBCI (or equivalent) level minimum)
Strong experience in impact analysis & risk assessment design and process.
Experience in designing, facilitating and reporting on complex, scenario-based exercises.
Capable of executing or fully understanding technology recovery exercise; technology background advantageous
Demonstrable experience managing business continuity third party risk process
Fusion Risk Management Business Continuity software experience advantageous
Emergency notification tool experience advantageous
Experience in the design and delivery or management information metrics advantageous
Personal Qualities:
Ability to influence key stakeholders
Confident decision maker and demonstrates task and objective ownership
Ability to drive consistent and repeatable results with limited supervision
Excellent oral and written communication and presentation skills
Strong Relationship Management at all levels
High attention to detail, accurate and consistent (on time) delivery
Ability to define and implement solutions based on strategic direction
Passion for personal development and learning
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.