Operational Risk Manager

Our Company

NymCard’s mission is to enable fintech and financial innovators to launch frictionless payment programmes with our modern infrastructure, at record speed. Our open API modern card issuing platform provides flexibility and control to issue cards, authorise transactions, and manage payment operations with just one integration and one partner.

We are a team of industry experts and technology innovators who take a dynamic approach to solving complex industry challenges. NymCard has an open and collaborative work environment and together we make up the NymCardian Nation. We power possibilities for our customers and each other by bringing the best talent together to do the best quality work we can.

The Role

We are hiring an Operational Risk Manager to build and run a practical, data led operational risk programme that protects day to day issuing operations and enables safe growth. You will turn policy into clear controls, keep RCSAs, KRIs, incidents, and loss events accurate and current, and provide concise risk insight to senior leaders and committees.

You will partner with Product, Engineering, Operations, Fraud, Finance, Customer Experience, Compliance, and Legal to assess risks in new products and changes, validate control design and effectiveness, and ensure NymCard stays inspection ready for CBUAE and partner expectations. Success looks like a living risk profile, fast and factual incident reviews, measurable reduction in repeat issues, and evidence that stands up to audit.

What You’ll Be Doing

• Framework and policy: maintain NymCard’s Operational Risk Management Framework aligned to CBUAE and international standards. Keep ownership, frequency, and evidence requirements explicit.
• RCSAs and process reviews: run risk and control self assessments across payments operations, issuing, settlements, fraud, reconciliation, vendor risk, and support operations. Record design and effectiveness with clear actions and due dates.
• KRIs and reporting: define and monitor KRIs, incidents, near misses, and control failures. Publish short MI with trends, thresholds, and owners.
• Incidents and root cause: lead investigations, document root cause and contributing factors, agree corrective and preventive actions, and verify closure with evidence.
• Change and new product risk: work with Tech and Product so risks are assessed during design, build, and rollout. Embed control checkpoints and sign offs into release plans.
• Regulatory liaison: prepare operational risk returns, respond to RFIs, and keep working papers indexed for inspections in the UAE.
• Training and awareness: deliver targeted training for high risk teams and new joiners. Track attendance and keep materials current.
• Assurance coordination: partner with Compliance, Internal Audit, and first line QA to align coverage and reduce duplication.
• Third party and outsourcing: contribute to vendor risk reviews and ongoing monitoring with clear SLAs, performance, and remediation tracking.
• BCP and resilience inputs: support scenario reviews, failover drills, and readiness checks. Ensure lessons feed back into RCSAs and KRIs.
  
  

What You Bring

• 5 to 7 years in operational risk within fintech, banking, or payments, with UAE exposure preferred.
• Working knowledge of CBUAE guidelines and comfort interacting with UAE regulators.
• Familiarity with core payments processes: authorisations, settlements, chargebacks, fraud operations, and reconciliation.
• Hands on with risk frameworks, incident logs, RCSAs, and practical control testing.
• Strong analysis and documentation. You write clearly, keep tidy evidence, and focus on material risk.
• Ability to collaborate with business and technical teams and explain risks in simple terms.
• Awareness of Basel and ISO 31000 concepts.
  
  

Bonus Points

• Hybrid working model: In-office collaboration for design reviews, workshops, and team days, with flexible remote time for deep work. Clear expectations on core hours and availability.
• Ownership and growth: Small teams and direct access to decision makers. End-to-end responsibility for your area, support for certifications and learning, and progression based on outcomes.
• Cross-border exposure: Work with clients and partners across MENA and beyond. Gain hands-on experience with schemes, banks, and regulators, and broaden your domain expertise.
• Real product and business impact: Build for a live issuing platform used by fintechs. See measurable results on performance and revenue within weeks, and celebrate wins backed by data.