Jack Gonsalves

Risk Assurance

• Identification, assessment, evaluation of all risks and driving the mitigations of key risks by
  continuous monitoring of KPIs, control measures, in coordination of risk and control owners
  • Review of all the risk areas once in a month/quarter to update the Risk register with new Risk
  and mitigation plans- Ownership of Risk Register.
  • Testing of risk mitigations in place for top risk areas and check the efficacy of controls put in
  place and monthly, quarterly updates.
  • Training to key stakeholders across functions to increase participation and bring ownership of
  risk mitigation practices, Process and SOPs adherence.

Fraud Investigations: -
• Driving Fraud management cases for closure including resolution of Whistle blower cases.
• Fraud Analytics, Review of Internal controls, Gap analysis and work towards strengthening the
internal controls to minimize frauds.
Internal Audit: -
• Development of Internal Audit Plan across functions/Audit calendar and adherence to ensure
coverage as per plan.
• Liaison with the outsourced auditors and internal stakeholders to monitor the execution of the
audit plan and smooth completion of the audit.
• Carry out review and audit (some surprise) of 4-5 processes every quarter; this is in addition to
the processes being reviewed by the outsourced auditors.
• Working with internal stakeholders to develop systemic and long-term solutions for resolving
audit observations.
• Do a regular follow-up on overdue issues/findings and ensure timely compliance /
implementation.

Operational Risk

Implementation of risk governance, policies and framework
• Prevent and minimize operational risk through process management and co-ordination of
various activities i.e identify and fix gaps·
• Perform reviews such as KCSA, KRI etc, along with tracking of responses and action plan.
• Working with business units in identifying relevant operational risk issues in end-to-end
process.
• Collate/Assess information, monitor trends and breaches in control failures
• To act as operational risk deputy co-ordinator to commit the activities of, with co-ordination
with all department heads, evaluation frequency and loss of potential Operational Risks
(OpR). Timely reporting of losses (Loss database) to head quarter as required.
• Conduct self-assessment exercise by scenario building i.e by cause, event and impact and
provide data to management through risk committee meetings.
• Enhance the risk management capabilities by developing tools and methodologies which
would assist in better controls and management of risk.
• Align the operational risk process as per industry best practices.
• Recording, evaluating and tracking incurred operational damages
• Establishing and maintaining an operational risk / loss event database.
• Ensuring that all operational risk documentation is up to date.
• Align the KYC/AML policy as per RBI circular
• Co-ordinate with HR in regards to training to staff on KYC/AML related topics
Outsourcing Vendor Management
• To formulate and update outsourcing policy
• To act as outsourcing coordinator to perform the activities of outsourcing check, quality check
of the “risk analysis”, risk assessment for outsourcing activities,
• To submit list of Material vendors to Senior Management on a six-monthly basis.

Fraud Management
• Investigate fraud cases by interviewing staff, vendor’s and others.
• Analyse the trend and implement deterrent.
• Conduct pre-disbursement fraud checks i.e Field verification cross checks and post
disbursement i.e Asset verification checks
• Reporting of FMR, STR etc to regulators.

To be the source of reference within the Business Unit in facilitating and promoting the
understanding of OR and compliance requirements.
• Lead and support implementation of OR initiatives for the Business Unit.
• Proactively communicate with the Business Unit Head and BORM on operational risk issues.
Escalate significant events to Business Unit Head /BORM/Business Head as appropriate.

• Coordinate and consolidate operational risk and loss reporting of the unit for the reporting to
the BORC, BORM and Business Unit Head. Ensure data accuracy and completeness.
• Design and implement control measures and monitoring plans for compliance and
operational risk management. Ensure effectiveness of controls for compliance monitoring and
risk management.
• Undertake and/or coordinate periodic business monitoring (self-assessment) activities within
the Business Unit and escalate findings and or breaches to Business Unit Head and BORM,
when they occur.
• Ensure risks and issues identified are resolved in an appropriate and timely manner.
• Develop in-country operational risk framework and monitor country Direct Sales adherence to
policy framework
• Escalate any significant risk issues, which require senior management oversight to CHCB /
Group Sales / CB Operational Risk (OR) Management through BORC / CORC channel.
• Assist BORM in the implementation of OR framework or other relevant OR initiatives.
• Identify gaps and arrange training on compliance and OR for staff.
• Ensure adherence to the Group AML policy and ORMA framework.

• Developed risk assessment matrices and templates to increase visibility of risks and facilitate decision making.
• Implemented risk avoidance and mitigation strategies to eliminate hazards, activities and exposures that could negatively impact organizational assets.
• Delivered presentations and training courses to promote best practices for techniques and processes.
• Implemented and managed controls to comply with laws and regulations, agreements and SOPs.