Reporting to EMEA Head of Operational Risk and International Head of Technology & Information Security Risk my responsibilities for managing the Operational Risk Oversight of all international regions include the following:• Overseeing and delivering Risk & Control Self-Assessment (RCSA) reviews for the EMEA region and supporting businesses for documenting risks and controls;• Developing and executing Operational Risk related tools like ERIA & IORA across the international regions, and helping business remediate the issues and control gaps;• Managing, reviewing and challenging various risk data sets like Issues & Action Plans (Veritas system), Risk Acceptances, KRI and KPI reviews (Archer System) and Risk Events (Service Now) for international regions;• Managing Technology and Informational Security risk types and conduct POV deep dives where required for senior stakeholders reporting purposes;• Developed and documented a successful process for the review and challenge of Authoritative Sources for Technology and Information Security spanning across 6 stakeholder teams and 3 different systems for US & International regions;• Leading a network of risk champions across all international regions to execute implementation of regulatory changes within Authoritative Sources;• Successfully lead implementation of Cloud security regulations project for MS365 implementation; and• Performed a Six-month secondment with the Independent Testing & Validation Team leading on an RCSA based targeted testing assignment related to Payments.

I was part of the Enterprise Risk Management Team providing oversight of Corporate Bank performing the following activities:• Reviewing, developing and implementing the enterprise risk framework, policies and procedures while managing the enterprise-wide risk profile of the business; • Identifying, quantifying and monitoring the Operational Risk and providing management reporting of risks, control weakness and control assurances;• Started and lead the control testing for the business from the planning, execution and reporting;• Conducted deep dives for major risk events and presented executive reports to management;• Developed and delivered the annual ICAAP regulatory return by running the scenario analysis programme by collecting and reviewing the data and impacts;• Participating in the approval forums for new products, businesses, initiatives and projects;• Identifying, quantifying and monitoring the Enterprise Risk profile including Operational Risk by providing aggregate management reporting;• Developing and maintaining the framework, policies and procedural for Enterprise Risk; • Driving the annual Risk & Control Self-Assessment (RCSA) process by providing subject matter expertise to key stakeholders through consultation and targeted training; and• Capturing and challenging of operational risk events including IT related risk events for IBP, with appropriate root cause analysis.

I was responsible for the following Operational Risk activities within the Credit Risk Function:• Drive consistency of the control framework by ensuring Group Wholesale Credit Risk (WCR) policies and standards are understood and adhered to, and challenged where appropriate within Enterprise Risk Management Framework (ERMF). • Drive the annual Risk and Control Self Assessment (RCSA) process by providing subject matter expertise to key stakeholders through consultation by targeted training and reviewing and challenging proposed controls.• Provide input, leadership and challenge in driving consistency and accuracy for other risk assessments, e.g. quarterly Key Risk Assessments (KRA), Management Control Assessment and Control Environment (MCA/CE)• Act as a key contact for the core second line functions, e.g. Credit Risk Conformance, Controls Testing, as well as Internal Audit in the third line. Provide SME input and provide challenge to review findings and resultant actions. • Ongoing identification of controls weaknesses in the existing Credit Risk control framework.• Prepare and deliver balanced and accurate presentations or reports to the bank’s most senior Risk Committee and senior stakeholders on any topics managed within the role.

Being part of the Business Controls Team, my accomplishments/ experience include the following:• Owning and maintaining the Risk & Control Self-Assessment (RCSA) process for the business;• Supporting Risk Owners & Risk Champions to identify, record, monitor and report on business risks in accordance with the Barclays Group Enterprise Risk Framework;• Developing and Reporting MI for monthly Control Board meetings;• Supporting and coordinating the action closure from the audit and compliance reviews;• Engaging with business stakeholders and maintaining follow-up and tracking on the remediation of weaknesses and control gaps identified through various internal and external reviews;• Identifying and developing a suitable change risk management programme to help review, prioritize and deliver change including the process flow mapping and control documentation; • Coordinating with other key stakeholders (including ExCo and the BUCO Team) to create a risk-aware culture through participation in various forums through regular presentations;• Reviewing and providing an opinion, and guidance on the risk exposure the business faces in its mandatory, strategic and tactical change activity;• Played a critical role within the implementation of Metric Stream’s ORAC system for Operational Risk for Barclaycard as the lead of the Business User Acceptance Team;• Awarded the Global recognition award for Excellence value by Barclays.

I was heading the Operational Risk Management Division, and my achievements include: • Established Operational Risk Management (ORM) department within Risk Management Division as a second line of defence.• Designed and developed the ORM Policy and Procedures Framework and ORM tools like RCSA & KRI templates and Operational Risk Loss Database;• Devised and implemented operational risk appetite and reporting thresholds/ infrastructure for Risk Management Committee (MRMC) and Board’s Risk Management Committee (BRMC);• Collected and analysed operational risk loss data received to drive effective ORM and for production of Bank-wide operational risk reporting for MRMC and BRMC;• Prepared the very first ICAAP report of the bank for submission to the regulator • Presented with a “Letter of Appreciation” by Managing Director

Broadly, my accomplishments/ experience included the following as team leader of Operational Risk Department:• Established and lead one of the two teams within Operational Risk Division (ORD) as 2nd line. • Under my leadership, Bank was allowed by the regulator for parallel run of Alternative Standardized Approach (ASA) for Operational Risk under Basel II • Designed, developed and delivered Bank-wide awareness / training sessions for proper & timely roll out of the Operational Risk Framework;• Collected historical operational loss data from ten different groups within ABL for twenty distinct loss categories spanning five years (2007-20011) and established the reporting infrastructure;• Finalized the Business Line Mapping for the calculation of Operational Risk Capital; • Presented and Coordinated with the Regulator’s Inspection Team and PwC, who were providing ongoing advisory services; and• Took the responsibility and implemented SAS OpRisk Monitor for meeting the requirements of the ASA approach.

Joined PwC’s Risk Advisory Services (RAS) to complete practical training requirements for my ACCA and ACA qualifications. The significant assignments that have contributed to professional growth include:• Basel II Minimum Capital Return Verification;• Basel II Diagnostic and Implementation;• Consultancy on organizational structure of the Bank and preparation of policy manuals;• Business Process Reengineering;• Forensic Audit;• External Audit; and• Internal Audit.