Overview:

Delivers second line risk management services for the UK and EU, business, and support areas in line with area policies, industry standards, and management expectations. Advises senior and executive leadership on operational risk of the supported businesses and functions in a collaborative manner with other risk partners, as applicable. Supports the evolving landscape of the risk management environment to influence internal and external personnel with the evolution of these changes.

Primary Responsibilities:

Develop and produce complex and ad-hoc reports, spreadsheet, and project work related to various operational risk disciplines. Communicate with others throughout the Bank, including senior management, via phone, email or in person to obtain information necessary for their and to resolve issues. Provide guidance and direction to others regarding the data necessary for construction of simple quantification methods, predictive statistical models or other items intended to enhance risk reporting. Independently evaluate the area's management of key processes for the effective and efficient mitigation of operational risk. Ensure underlying elements of the risk management framework accurately reflect the operational risk environment. Identify gaps or deficiencies and ensure remediation plans address the risk; escalate through senior management and governance committees as appropriate. Lead initiatives to analyze various elements of this framework. With minimal oversight, prepare and support appropriately detailed reports and presentations for and to senior level audiences relating to and providing opinions on, the state of, and/or concerns with, the operational risk environment of the business function. Work with the business to evaluate all new products or changes to existing products and services to ensure key risks are appropriately identified and mitigated, and residual risk is appropriately defined; coordinate applicable governance activities. Serve as liaison with other second line risk teams within the enterprise for periodic reviews or input and second line risk services for any other identified or required local requirements. Assess and work with the business to incorporate high risk testing scenarios into first line of defense testing, as appropriate. Review and assess the business testing output, making recommendations as applicable. Participate in designated risk committees and other meetings, serving as second line of defense representative in discussions; ensure communication of relevant concerns or positions taken to appropriate management. Work with senior management within Risk and the Bank, first line risk and other second line risk partners, to develop and influence value-added process improvements, resolve risk issues, enhance reporting and/or exchange information necessary to assess risk. Draft, document and/or review departmental procedures and other documentation to demonstrate the process, including developing and/or improving training materials to be leveraged by those within the department or Bank. Interact with external peers and members of professional organizations to remain aware of changing or emerging risks and proactively bring key information to team for inclusion and consideration in continuous monitoring and/or other oversight activities. Discern, formalize, and socialize the impact, likelihood, and root cause of issues and/or violations of policy. Determine appropriate adjustments to processes and supporting procedures to ensure they address risk in a cost-effective manner. Assess impact and likelihood in determining the appropriate approach to resolving complex issues and matters that require resolution. Support the Bank by managing the European administrative governance, coordination, and ongoing maintenance of the Bank’s framework for managing risk. Work with Cybersecurity for oversight and challenge of identifying, assessing, monitoring, mitigating, and reporting of all significant risks within Cybersecurity, Technology, Financial Crimes, Physical Security and Continuity Planning areas for Europe. Monitor and report Europe-based business and support unit adherence to the operational risk appetite component of the risk framework, leveraging risk and event data. Support eGRC system administrative and reporting processes. Provide input to ongoing development and implementation of Europe/UK outsourcing policy and framework to meet current and future enterprise and local regulatory requirements for effective risk management of these engagements in anticipation of future regulated activities. Oversee and challenge of business and partner management of engagements and services provided, including but not limited to, inclusion of relevant risks and controls related to services in the business, Risk & Control Self-Assessment ( RCSA), Service Level Agreements (SLAs) and monitoring metrics to assure service quality, and periodic documented discussions with the vendor to support risk-based assessments. Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management. Promote an environment that supports diversity and reflects the M&T Bank brand. Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable. Complete other related duties as assigned.

Scope of Responsibilities:

The position oversees and/or executes one or more of the following activities that adheres to expectations of the operational risk management framework, as it evolves, and those of key stakeholders, up to and including the Board: identification, assessment, quantification, documentation, escalation, reporting, and communication of unmitigated risks within the business. The job holder is considered a subject matter expert in the supported businesses or functions. The position requires establishment of relationships with senior level personnel to remain apprised of changes in the business, communicate and present emerging risks, changes to the regulatory landscape, and consider cost-beneficial risk management opportunities for the business.

Supervisory/Managerial Responsibilities:

Not Applicable

Education and Experience Required:

Bachelor’s degree and a minimum of 7 years' compliance, legal, audit, risk and/or other relevant experience, or in lieu of a degree, a combined minimum of 11 years’ higher education and/or work experience, including a minimum of 7 years’ compliance, legal, audit, risk and/or other relevant experience

Proficiency with personal computers as well as pertinent spreadsheet and word processing software

Strong analytical skills

Working knowledge of applicable laws

Strong verbal and written communications skills

Education and Experience Preferred:

Knowledge of the Senior Managers and Certification Regime (SM&CR), ideally with experience as a Certified Person

Strong interest in developing the necessary skills and experience to progress to an SMF role

Knowledge of, and experience with Capital Markets related roles, including Loan Agency and Structured Finance administration

Physical Requirements:

Ability to travel as required.

Hybrid Role – Working in the office a minimum of three days per week

Location

London, United Kingdom