Vandana Anand
Birmingham
Summary
Experienced financial services professional with a strong track record in audit, change/ programme management, and vendor risk oversight. Proven ability to deliver robust control frameworks, drive regulatory compliance, and manage strategic transformation initiatives across complex banking and financial environments. Skilled in identifying process inefficiencies, mitigating operational and regulatory risks, and supporting continuous improvement through cross-functional collaboration. Adept at working in fast-paced, high-stakes environments with a focus on governance, integrity, and value delivery.
Overview
17
17
years of professional experience
1
1
Certification
Work History
Co-sourced to Citi Bank
Protiviti UK
09.2024 - 03.2025
- Securities Services – Fund Administration & Fund Accounting (North America) audit delivery. Testing business & risk controls for RCM approved delivery of design and operational effectiveness of identified business & risk controls related to Trade processing, fund accounting-NAV calculations & NAV release, Corporate Actions, cash and positions reconciliations, records retrieval, EUC- ITGC & ITAC, Third party risk management- Bloomberg /Charles River/, Trade Reporting and fund settlements etc along with holding initial calls with process managers, drafting issues & observations, holding factual observation & management action plan meetings with stakeholders, reviewing and refining corrective action plan and preparing draft report for submission to Chief Auditor.
- Successfully delivered testing of business & risk controls for Agency Lending Services – NAM & EMEA for Trade Processing- Client Onboarding, Trade Booking, Dividend & Cash Reinvestment, Euroclear Settlement, Reconciliations & Breaks Resolutions etc.
- Successfully delivered 3 Regulatory Issue validation/ remediation audit projects that involved testing of controls & assurance reviews related to external regulatory findings from regulators (RBI) resulting from sell transactions without sufficient client holding (SGL bounce/ short sell) and deficiencies in custodian reconciliation process; SEBI Custodian Inspection Observation related to periodic supervisory and Financial Reporting; inefficiencies in MAS Financial Reporting for OTC derivatives transactions to a designated trade repository including interest rates, credit, FX, commodity & equity derivatives contracts.
- Additionally, created end to end process maps for all above using BlueWorks for audit closure approvals.
Co-sourced to Computershare
Protiviti UK
08.2023 - 12.2023
- Lead completion and audit delivery of customer mortgage payments landscape including full customer lifecycle management via iConnect platform (using SWIFT, BACS, direct debit & adhoc payments processing) and ledger reconciliation processes in alignment with MCOB13 regulation outlined in FCA/ PRA handbook.
- Supervised 3 senior auditors for completion of periodic assessment of key internal business controls & testing.
- Completed remediation validation audit for TOPAZ change programme (legacy integration initiative involving various sub prime lenders & UK Asset Resolution £860m mortgage portfolio acquisition) for legacy IT, business & operational risk control & regulatory policy adherence gaps identified as part of external KPMG audit and thematic regulatory review conducted by FCA. As part of standard audit & assurance reporting, the completion report was submitted to the FCA that was well acknowledged by the regulatory body as a satisfactory letter of evidence of change delivery & remediation.
- Completed change audit assurance for business case and operational readiness stages of Cost of Living Forbearance project initiated to remediate regulatory compliance breaches outlined by FCA thematic review conducted to assess safeguarding of vulnerable customers during pandemic backdrop in alignment with FCA Market conduct, Market Abuse (MAR1, PRIN 1.2, PS18/18) etc.
Co-sourced to HSBC-USA, QAIP- Internal audit, Regulatory & Compliance Unit
Protiviti UK
05.2022 - 08.2022
- QA Assessments & Reporting: Conducted QA reviews, thematic and framework evaluations in alignment with IIA & bank IA standards as part of the global QAIP framework for US Regulatory & Compliance internal audits such as US Independent Market Model Risk Review, Global Diversity & Inclusion, and US Regulatory Compliance for Expedited Funds Availability Act/ Regulation CC (Availability of Funds & Collection of Checks).
- Facilitate broader QA activities: audit effectiveness evaluations, root cause analysis, and “QC of QC” (quality control of quality control), ensuring consistent standards.
- Performed quality assurance reviews, evaluating whether audit activities meet professional standards, are properly documented, and maintain independence and integrity.
- Stakeholder Engagement: Collaborated with various internal teams—Audit, Compliance, Risk, Investigations—to ensure seamless QA reviews and embed improvements.
- Drafted observations & issue documents; held regular update meetings & assurance closure calls with the key stakeholders whilst preparing risk impact based final reports for reporting tollgate submission.
- Monitoring & Continuous Improvement: Created and tracked management information (MI) and key performance indicators—highlighting trends, findings, and insights for leadership and audit committee.
- Prepared corrective actions and follow-up plans, helping address issues identified in QA reviews through training, guidance, or heightened monitoring.
Audit & Change Assurance Delivery for Large & Complex Advisory
Grant Thornton UK
06.2021 - 12.2021
- Co-sourced to FCA, Vendor IT Transformation Risk Assurance Associate Director (Sep’21- Dec’21): Accomplished the Vendor IT transformation & change risk assurance for the regulatory body that included an operational readiness risk assessment work for comprehensive coverage of Market Financial Conduct and Supervision related IT & change risks and controls identified to deliver market abuse monitoring and triage pilot project for FCA regulated firms.
- Co-sourced to Nationwide, 3rd Party PRA Risk Assurance Associate Director (Jun’21- Aug’21): Accomplished thematic risk remediation oversight and delivery assurance exercise using agile & scrum framework in context of then upcoming PRA SS 2/21 & 7/21 regulations related to third party vendor outsourcing. Prepared and submitted regulatory compliance assurance reports to the Prudential Regulatory Authority for various ‘material’ vendor services in the context of 3rd party outsourcing related to applicable key legislations & EBA guidelines. Designed outsourcing risk register for recording and monitoring 3rd party outsourcing processes, key risks, regulatory compliance approvals and financial impact.
TPRM- Vendor Risk & Governance Oversight for End User Computing I Technology & Data Innovation Division
Deutsche Bank
06.2020 - 05.2021
- Planning and execution of vendor lifecycle related risk & control assessments, contract completion, and on-going outsourcing activities including regulatory & compliance approvals from regional & external Global regulators in order to drive phase wise implementation of vendor services like Microsoft Intune, HP print services, ATOS, Virtual Desktop integration in over 80 countries.
- Analyze vendor service lifecycle risks to develop and recommend effective governance/risk management strategy.
- Devised and executed risk remediation plans and other ad hoc control initiatives to mitigate risks raised by various bank clients like external auditors, regulators (like HKMA, MAS, APRA, RBA, RBI, BaFin, BundesBank, PRA, FED, FRBNY, FINRA) and various global outsourcing committees.
- Established and maintained consistent communications with EUC technology owners and non-financial risk management/risk type controllers (RTC like Group Compliance, Legal, Third Party Management, Information Security, Cloud & IT architecture, GDPR, Tax, Global Procurement etc) to coordinate the Vendor Risk & Control assessments.
- Collaborated with SRO and technology tower leaders to manage vendor governance forums and service delivery processes.
- Managed supervisory oversight for accurate information capture and timely distribution of responses to all Regulatory, Client & External Audit Questionnaires that were periodic, event or environmental risk based, outsourcing focused or annual surveys specific for all of EUC division. This involved deep dive exercises to develop risk remediation plan and perform risk validation exercise.
- Improved efficiency of vendor governance and risk control monitoring processes by suggesting continuous improvements for all material outsourcing services within EUC.
- EUC vendor governance compliance scores were augmented by 26% as an outcome of the above.
- Obtained regulatory & compliance approvals for Microsoft vendor services launch across 108/132 branch franchise in over 80 countries.
Principal Auditor, GIA – IT & Change; TPRM (Vendor Strategy, Procurement & Regulatory Compliance)
Deutsche Bank
01.2008 - 12.2019
- Perform internal audit work in line with department's established risk-based methodology such as audit planning, execution, client management, risk assessment & compliance, internal control evaluation, reporting etc.
- Identify, assess and address various financial crime, operational, IT and fraud risks & controls issues, thematic & regulatory risks associated with the DB group’s Strategy 2020 outlook focused on 34 core change initiatives spanning 5 years implementation period.
- Perform and use data analytics where possible for audit sampling.
- Proactively assess where agile auditing techniques can be applied to augment faster and factual outcomes.
- Managed assigned audit scope of work like timely completion of audit planning, fieldwork testing, documentation in DB AWARE and review of others work papers to ensure that relevant risks and controls have been identified and appropriately assessed.
- Monitor various risk and controls capture applications and reports to determine areas of weaknesses and control issues.
- Prepared high quality real time observations, risk exceptions and audit findings report & provide timely updates to the clients on audit progress and findings.
- Prepare clear and concise audit reports detailing findings and recommendations. Independently held Management Findings meeting with senior stakeholders and to communicate final audit results to the senior stakeholders.
Principal, Change & Risk Assurance (COO Programme Governance)
Deutsche Bank
01.2008 - 12.2019
- Review COO CtB portfolio of Core Change Initiatives comprising of Business & IT transformation, Strategic & Regulatory programs to develop quarterly roadmap of Independent Assessment plans by applying the risk model and capacity planning.
- Conduct allocated independent assessments/ assurance audit of Programme & Project tollgates comprising of defined processes, controls evaluation, Issue identification, Risk & Change log, Governance, quantification and remediation against the standards defined in the Change Governance Framework.
- Deliver assessment reports to sponsors, develop management action plan and conduct risk remediation validation. Developed program and project lifecycle self assessment questionnaires and assurance practice guidebook.
- Produce change governance KPI and ExCo performance heatmap (Mark to Market metrics) for Group COO.
- Designed and implemented all ancillary assessment guidelines in accordance with various investment lifecycle scenarios and common change governance standards.
- Developed criterion matrix and effective recommendations plan to stop high risk investments where it is clear that the benefits will not be realized.
- Evaluated audit observations to address core competencies across change levels.
- Developed and cultivated close working relationships with CIOs & Portfolio/ Program Managers in order to address emerging or thematic risks in order to improve the chances of success for their programmes.
- Introduced IT transformation risk assessment as a key mandate for all programmes by liaising with NFRM and ERM groups.
- Organized change management blogs and domain coordinator sessions that promoted the use of best practices and enhanced change assurance/ program lifecycle health checks KPI compliance by up to 63%.
- Defined major roles and responsibilities for programme board and change management principles that constitute a key part of group level three change management policy & framework.
Global Business & Strategy COO, for Global Head- DB Ops & Tech Service Centres
Deutsche Bank
01.2008 - 12.2019
- Led the planning and execution of strategic and revenue-generating initiatives to ensure business success. Communicated with COO business managers to identify and resolve service-related issues.
- Co-chaired periodic outsourcing & regulatory assessment briefings with various regulators like FED, BaFin, EBA, FINRA, RBI, MSA & HKMA.
- Provide guidance on regulatory policies and preparation of consultation responses.
- Prepare regulatory submissions to the regulator.
- Ensure consistent implementation of regulatory guidance and policy opinions, including clear communication of the latest external regulatory developments to stakeholders.
- Oversaw annual vendor renewals and re-cert exercise for service centre locations.
- Monitored and maintained operational compliance with vendor governance and management control policies.
- Chaired meetings with ExCo COO staff to discuss and minimise vendor and operations audit risks.
- Created presentations and concept papers to assist executive decision making on strategic outsourcing matters with detailed financials and analytics.
- Hands-on project management to successfully benchmark location feasibility proof of concept paper to senior clients (regulatory bodies, Govt agencies) and deliver the location mapping strategy for strategic center set up in Bucharest (Romania), Cary (NY) that involved analysis, presentations, planning, follow-up and taking full ownership for specific parts of change project (eg; Functional Taxonomy exercise, future Target Operating Model showcase) incl. managing multiple stakeholder interests like COO Infra, Finance, HR to deliver ROI~ Euro 64 million (approx. 1300 seats).
Programme Manager – Business & IT Transitions, Vendor Risk & Operational Resiliency Implementation
- Successfully delivered the strategic set up and implementation of multi-year transitions program for Birmingham, UK location that involved monitoring & reporting program related development, assessing migration scope, pipeline estimation, supervising production & billing cost. Designed the program structure and approach, including key roles and responsibilities, governance, work streams and milestones and engaged with the business on a regular basis to understand changing requirements and expectations from service delivery perspective.
- Year 2008-09: Ramped up 550+ seats in Birmingham unlocking a program benefits realization > ~30.8 m Euros. This initiative included advocating proof of concept with local council and universities to include a term course to introduce Trade Lifecycle and other banking & finance modules in order to skill the graduate cohorts who took up internship/ apprenticeship opportunities with the bank.
- Q2- Q4 2010: Delivered benefits realization of 24.07 m Euros via successfully executing Global Nextgen offshoring program (409 FTE roles moved to Birmingham).
- As a transitions lead for UKI, led insourcing and implementation of various business and IT processes for various asset classes in CIB, GTB, GM and Finance like Cash and Collateral Management, FX/ derivatives & equity, FRTB, Security Services/ Asset Services Lending, TLM Reconciliations, Client Onboarding, GTB Payments solutions, Trade Compliance, HP workplace.
- Successfully delivered Intercity Resiliency Initiative of over 1400+ seats in India leading to completion of operational resiliency and cross functional integration of processes across various asset classes.
- Piloted outsourcing initiative of SSR/TLM accounts related reconciliation functions from DB to TCS (200+ seats).
- Migration oversight support for 800+ seats in GFFX, Sec Ops and Reconciliation functions from outsourcing partner HCL back to DB, India with an annual saving potential of Euro 18.8 million.
Education
BA (Hons) - Foreign Languages
PG Diploma - Business Management
Certificate - Investment Management, Financial Management, Programme Management
Oxford Said Business School
Skills
- C-suite Stakeholder Management
- Business/IT & Change Audit
- Risk & Controls Assurance
- Outsourcing/ Regulatory & Compliance Advisory
- Strategic Change/ Programme Management
- Third Party Risk & Vendor Governance
- Business Resiliency Oversight
- Fraud Investigations & Reporting
- Fin Crime: AML- Sanctions & Embargo Screening, KYC-CDD/EDD
- Trade Surveillance & Screening: Horizon
Certification
- Certified Fraud Examiner (CFE), 09/01/22
- Certified Internal Auditor (CIA), 09/01/22
- Certified Information Systems Auditor (CISA), 01/01/22
- Certification in Risk and Information Systems Control (CRISC), 01/01/20
- Certification in Governance of Enterprise IT (CGEIT), 01/01/20
Ongoing Education
Online Level 3 CyberSecurity Certification, 12/31/25
Personal Information
Citizenship: British
Timeline
Co-sourced to Citi Bank
Protiviti UK
09.2024 - 03.2025
Co-sourced to Computershare
Protiviti UK
08.2023 - 12.2023
Co-sourced to HSBC-USA, QAIP- Internal audit, Regulatory & Compliance Unit
Protiviti UK
05.2022 - 08.2022
Audit & Change Assurance Delivery for Large & Complex Advisory
Grant Thornton UK
06.2021 - 12.2021
TPRM- Vendor Risk & Governance Oversight for End User Computing I Technology & Data Innovation Division
Deutsche Bank
06.2020 - 05.2021
Principal Auditor, GIA – IT & Change; TPRM (Vendor Strategy, Procurement & Regulatory Compliance)
Deutsche Bank
01.2008 - 12.2019
Principal, Change & Risk Assurance (COO Programme Governance)
Deutsche Bank
01.2008 - 12.2019
Global Business & Strategy COO, for Global Head- DB Ops & Tech Service Centres
Deutsche Bank
01.2008 - 12.2019
Programme Manager – Business & IT Transitions, Vendor Risk & Operational Resiliency Implementation
BA (Hons) - Foreign Languages
PG Diploma - Business Management
Certificate - Investment Management, Financial Management, Programme Management
Oxford Said Business School