We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G plc group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003. The company has rapidly transformed itself into a powerhouse of capability that is playing an important role in M&G plcs ambition to be the best loved and most successful savings and investments company in the world.
Our diversified service offerings extending from Digital Services (Digital Engineering, AI, Advanced Analytics, RPA, and BI & Insights), Business Transformation, Management Consulting & Strategy, Finance, Actuarial, Quants, Research, Information Technology, Customer Service, Risk & Compliance and Audit provide our people with exciting career growth opportunities.
Overall Job Purpose
The M&G plc Risk and Compliance function, within the second line of defence, is responsible for effectively advising and challenging key stakeholders, challenging risks effectively and proactively, and adding value through providing enhanced business insights to ensure that risk is managed in line with the expectations of clients, shareholders and regulators, and to support the delivery of customers long term needs.
The Analyst, IT Assurance and Controls Testing reports to the Manager IT Assurance and Controls Testing in Operational Risk, M&G Global Services. The role sits in the M&G Global Services Risk and Compliance function and supporting to deliver the Operational Risk Assurance & Controls Testing Plan, and in so doing, supports the implementation of the Operational Risk Framework and Policies. The role works in close partnership with other stakeholders across the business to ensure a coordinated approach to monitoring effectiveness of control design and implementation across M&G plc.
Accountabilities/Responsibilities
The key responsibilities of this role are to support the delivery of the Operational Risk teams objectives to support the embedding of the operational risk framework across M&G plc and provide consolidated risk analysis and risk management information for Senior Management as required. This involves:

• Ensuring compliance to the people policies, Group Code of Conduct and embedding desired behaviours, including completion of any mandatory training requirements.
• Being personally accountable for identifying, assessing, managing and reporting risks within your area of responsibility, including supporting formal risk management activities e.g. Risk & Control Self Assessments and timely closure of Assurance action
• Contributing to the maintenance and enhancement of the M&G plc Operational Risk Information Technology Assurance & Controls Testing Plan and the controls scoping activity
• Supporting the IT Assurance & Controls Testing Manager in the delivery of the Plan
• Executing operational risk assurance, RCSA reliability reviews and IT control testing reviews/deep dives across all business areas and outsourced service providers as may be required including participating in the controls testing fieldwork, engaging with external auditors and documenting the test results
• Preparing reports of assurance and control testing review findings and recommendations
• Working with the wider Operational Risk team to drive improvements and enhancements based on experience and assessments performed.
• Facilitating identification and testing of Information Produced by Entity reports (IPE), Automated Interface / ITAC testing, and User Developed Applications (UDAs)
• Working flexibly and building collaboratively constructive and supportive working relationships with teams across M&G plc and suppliers
• Keep abreast of industry trends, regulatory and business issues impacting self-certification.
• Use of regulatory knowledge, business understanding and expert judgement, to quickly identify underlying issues and escalate issues, where appropriate.

Key Stakeholder Management
Internal

• M&G plc Risk and Compliance
• All M&G plc UK Business Areas and Senior Management Teams
• Internal Audit

External

• External Suppliers and Business Partners
• External Auditors
• Regulators

Knowledge, Skills, Experience & Educational Qualification
Required Skills

• Knowledge of IT Control Testing:
  • IT General Controls (ITGC) - Logical Access, Change Management, etc.
  • Information Produced by Entity reports (IPE), Automated Interface / IT Automated Controls and User Developed Applications (UDAs)
  • Information Security Controls
  • Data Privacy
• Ability to quickly learn and assimilate key processes and procedures.
• Ability to challenge constructively, and to be pragmatic where appropriate.
• Curious and continually looking to seek out improvements and not just accepting the status quo.
• Strong drive and delivery, committed to achieving results and delivering on time.
• Independent, analytical and positive mind, excellent inter-personal and communication skills, ability to deal with people in different levels including senior management
• Ability to work collaboratively across immediate team and broader Risk and Compliance function whilst also being to work independently under own initiative.
• Excellent Microsoft Office skills (Word, Excel, PowerPoint, PowerBI).
• Ability to manage conflicting objectives and to work to pressured deadlines.
• Good interpersonal skills - involving liaison across the organisation with key personnel, influencing others to deliver to deadlines and guiding them on specific requirements.

Desired Skills

• Knowledge of Control Frameworks such as COBIT and Information Technology/Security.
• Knowledge and experience of working with risk monitoring or internal audit assurance assignments and tools, techniques and industry best practice.
• Working knowledge of financial services products, systems, processes and distribution methods.
• Knowledge of UK financial services sector, including regulatory, governance and risk management rules and regulations.
• Knowledge of Operational Risk in financial services in investment management and insurance.
• Knowledge of Data Privacy and Data Protection with experience in performing data privacy assessments.
• Excellent stakeholder management skills, with the ability to successfully navigate a complex organisation as well as build strong relationships and work collaboratively with teams across the business.
• Ability to operate remotely, in a diverse and multi-cultural environment. International work or consultancy exposure would be a definite plus.
• Ability to analyse business requirements and regulations, highlighting key considerations or new requirements
• Ability to make quick independent decisions based on logical thought processes
• Good organisation and logistical skills

Experience:

• 0 - 3 years experience in a Risk/Audit function/Big4 within a financial institution with focus on information technology and security/ IT controls testing

Educational Qualification:

• Graduate/Post-graduate/MBA/B.E. with maximum of 3 years (or less) of experience in financial services industry, with prior experience in Operational Risk/Risk Management/Internal Audit
• B. Tech. / B.E. or other professional IT-related qualification
• Relevant professional qualification desirable (CISA, CISM, CISSP etc.)

We live by four behaviours at M&G Global Services and we ask all our employees to:

• Inspire Others - Support and encourage each other, creating an environment where everyone can contribute and succeed
• Embrace Change - Be open to change, willing to be challenged and able to adapt quickly and imaginatively to new ideas
• Deliver Results - Focus on outcomes, set high standards and deliver with energy and determination
• Keep it Simple - Cut through complexity and bureaucracy, be clear and decisive and never overcomplicate things