About the World Bank Group:
Established in 1944, the World Bank Group (WBG) is one of the largest sources of funding and knowledge for developing countries; a unique global partnership of five institutions: the International Bank for Reconstruction and Development (IBRD), the International Development Association (IDA), the International Finance Corporation (IFC), the Multilateral Investment Guarantee Agency (MIGA), and the International Centre for the Settlement of Investment Disputes (ICSID). With 189 member countries and more than 120 offices worldwide, the WBG works with public and private sector partners, investing in groundbreaking projects and using data, research, and technology to develop solutions to the most urgent global challenges.
ITS Vice Presidency Context:
Information and Technology Solutions (ITS) enables the WBG to achieve its mission of ending extreme poverty and promote shared prosperity in a sustainable way by delivering transformative information and technologies to its staff working in over 150 locations.
Our vision is to transform how the Bank Group accomplishes its mission through information and technology. In this fast-paced, ever-changing world, the formulation and implementation of the ITS strategy is an ongoing, iterative process of learning and adaptation developed through extensive consultations with business partners throughout the World Bank Group.
ITS shapes its strategy in response to changing business priorities and leverages new technologies to achieve three high-level business outcomes: business enablement, by providing Bank Group units with innovative digital tools and technologies to transform how they deliver value for their clients; empowerment & effectiveness, by ensuring that all Bank Group staff are connected, able to find information, and productive to accelerate the delivery of development solutions globally; and resilience, by equipping the Bank Group to provide risk-based cybersecurity and robust data protection for a global network and a growing cloud platform.
Implementation of the strategy is guided by three core principles. The first is to deliver solutions for business partners that are customer-centric, innovative, and transformative. The second is to provide the Bank Group with value for money with selective and standard technologies. The third principle is to excel at the basics by providing a high performing, robust, and resilient IT environment for the organization.
Enterprise resource planning (ERP) plays a critical role in supporting the World Bank Group’s (WBG) operations. The ERP platform that is currently used by the WBG (SAP ECC) was initially designed in 1992 and adopted by the WBG in 1999. Since then, the WBG has leveraged that platform to automate business processes and develop specialized solutions to manage its complex products and services.
WBG ERP is now 30 years old and will not be supported after 2025. Replacing the ERP, simplifying the processes, and decoupling the core ERP from the custom applications has become necessary. The objectives of “Project Aria” are to modernize WBG’s financial management capabilities, improve process effectiveness, increase agility, enhance business insights, and reduce operational risk by replacing the retiring ERP and modernizing custom applications developed on the platform.
The project has completed a two-year assessment phase and ready to commence the implementation of its first phase.
In preparation for the implementation the PMO is looking to establish a risk, governance, and compliance role. The primary goal of this role, reporting to the program manager, is to reduce the project exposure to risks that may affect the execution, delivery, quality, or outcomes. Make proactive decisions regarding preventable risks that have the potential to impact the project. Effective governance, risk management, and compliance controls.
Maintain the project governing body charters and membership
•Prepare all documents, presentations, reports, and other materials for governing bodies
•Review all governance materials with relevant stakeholders and Program Manager
•Review quality of all artifacts and materials submitted by project team to the governing bodies
•Coordinate, schedule, and facilitate the project governance processes
•Record decisions of the governing bodies and follow through action items
•Maintain the project decision log and status with evidences
•Educate new members on the processes
•Maintain minutes of all governance meetings and decisions
•Track governance action items through completion
•Document and maintain the project risk management processes in alignment with the existing IT Risk Management Framework.
•Communicate the risk management process and thresholds to stakeholders
•Conduct periodic assessments and document risks in the program
•Facilitate the assessment of risks and their impact
•Quantify the impact of risks and estimate costs/budget for risks if necessary
•Develop the necessary risk mitigation or response plans in collaboration with all the stakeholders
•Prioritize risks and the response plans
•Integrate risk mitigation and response plans into the project schedule and other relevant project teams such as Delivery, Change management, Testing, Vendor management etc.
•Liaise with the IT Risk Management team and operational risk department to identify potential interplay of project, operational, and enterprise risks
•Control risks and monitor the implementation of risk mitigation plans
•Update the risk registers
•Communicate and report risk and response status to the Program Manager, IT Risk Management team and the governing bodies
•Document project issues along with their severity and impact
•Coordinate the development of issue resolution plans
•Track and follow issue resolution plans through closure
•Ensure development processes comply with the institutional governance and systems development processes and controls
•Ensure adequate documentation of the SDLC activities to support audit and compliance reviews
•Integrate the risk and compliance plans and communicate with stakeholders
•Conduct reviews and monitor compliance with the relevant WBG IT processes and internal control framework as needed in collaboration with the IT compliance team, WBG internal controls units and project stakeholders
•Ensure project deliverables comply with the defined WBG standards
•Periodically audit vendors’ processes for compliance with agreed standards and controls in delivery
•Document findings and plans of action. Track and report action plans through completion
•Co-ordinate activities for fulfilling requirements of independent verification & validation and support internal and external audits or assessments, and compliance checks in coordination with the IT compliance team
•Perform other duties as required by the PMO
•Assess, evaluate, and make recommendations to the PMO regarding the adequacy of the controls
•Develop and promote effective relationships with colleagues and team members. Deal constructively with conflicts.
•Expresses oneself clearly in conversations and interactions with others; listen actively. Effective in written communication and information sharing
•Work constructively with people of all backgrounds and orientations. Respect differences and ensure that all can contribute.
•Be assertive and be open to ideas
•Adapt and respond positively to change
•Master’s degree, or equivalent in Finance, Information Technology Management, or related field with 8 years relevant experience or Bachelors Degree with a minimum of 10 years relevant experience.
•Certified Information Systems Auditor (CISA) and/or Certified Internal Auditor (CIA)
•Expert knowledge of English is required.
•8+ years of relevant experience in implementing, managing, reviewing, and improving internal controls for governance, compliance and quality, IT audits, or assurance and risk management programs
•Strong knowledge of Software Development Life Cycle activities
•Proven experience in performing risk management functions for at least two large ERP replacement programs
•Track record of preforming internal or external audits (financial/operational/IT) in accordance with relevant professional standards (note: ISO audits only do not fulfil this requirement)
•Demonstrated ability to work with and report to PMOs and governing bodies
•Highly proficient in audit methodologies, especially but not limited to those applicable in IT environments in financial services organizations
•Highly skilled in designing and implementing compliance and control frameworks
•Proficient in project governance and quality standards
•Writing high quality documentation and reports
•Excellent interpersonal, communication, and presentation skills, including formal report writing experience
•Demonstrated ability to work in multicultural and diverse environments
•Project management experience using a recognized standard (e.g. Prince2)
•Experience working in public sector or international organizations
•Good understanding of financial, accounting, and legal risks
•Managed the program delivery or program risks in SAP ERP replacement projects
Note: The selected candidate will be offered a one-year appointment, renewable for an additional one year, at the discretion of the World Bank Group, and subject to a lifetime maximum ET Appointment of two years. If an ET appointment ends before a full year, it is considered as a full year toward the lifetime maximum. Former and current ET staff who have completed all or any portion of their second-year ET appointment are not eligible for future ET appointments.
|Country:||-- United States|
|City, State:||Washington D.C.|