Analyst- Risk review & validation (RAF)

 Bangalore, India       Permanent contract        Risks


Objective: Be compliant with regulations & internal rules and enable Business Units (Bus) to manage their risks.

  • Identify the business risks (using methodologies and tools used by Application Security Team)
  • Identify the residual risks and have them validated by the business.
  • Provide recommendations in terms of security, allowing to reduce risks.
  • DCS/ISE team member will be part of the Level Step 3 and Step 5 validation stage of Risk Exception process.

Key Actions & Approach:

  • Treat RAFs (Accept, Reject, send for review) understanding the Business impact if the Risk is accepted.
  • Detailed check and investigation of the Information provided in the Form.
  • Enquire and challenge the Application Managers and Application Owners about the Business Risks and Impacts.
  • Refer the internal tools and database (MIRIS, Iappli, etc.) to gather necessary information.
  • Demonstrate keep interest to learn the Organization and Business functions to guide oneself in understanding exceptions requested.

Profile Required

1) 2 years in the IT environment

2) Application Security Domain experience will help in the quick integration and execution of job described.

- Application Security knowledge is mandatory.

- Application Penetration testing and strong understanding on Vulnerability Management.

- Good reporting and presentation skills – MS Excel, MS PowerPoint

Investment banking – Understanding for Application Security perspective,

Application Security risk analysis, Controls related to Application Security and Reporting,

Application Security activities’ coordination. (CIA and RACI concepts),

Challenge and if required approve the Exception to the Vulnerabilities requested in SG Tool.

Why Join Us

We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status

Business Insight

Société Générale Global Solution Centre (SG GSC), a 100% owned subsidiary of European banking major Société Générale (SG). Our role and purpose is to enable the strategic vision of Société Générale Group. We are doing this by pioneering cutting edge innovation from Design Thinking to Smart Automation & Artificial Intelligence and applying it to banking. SG Global Solution Centre provides services in the areas of Application Development and Maintenance, Infrastructure Management, Business Process Management, and Knowledge Process Management to Société Générale’s business lines around the world.

We are an equal opportunities employer and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, sexual or gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.

Job code: 20000F2X
Business unit: SG Global Solution Centre
Starting date: 01/09/2020
Date of publication: 05/08/2020
Share on

Analyst- Risk review & validation (RAF)

Permanent contract   |   Bangalore   |   Risks