Risk Manager Norway

  • Professor Kohts vei 9, 1366 Lysaker, Norway
  • Full-time
  • Department: Legal & Compliance
  • Role Type: Hybrid
  • Employee Status: Regular
  • Schedule: Full Time

Company Description

Experian is a leading global information services company that unlocks the power of data to create opportunities for consumers, businesses and societies across the world.

We gather, analyze and process data in ways others can’t. We help individuals take financial control and access financial services, businesses make smarter decision and thrive, lenders lend more responsibly, and organizations prevent identity fraud and crime.

We aim to place clients and consumers at the heart of everything we do. We help them to make the most of their data and realise their ambitions by enabling quicker, smarter decisions using our analytics and software.

The breadth, depth, and accuracy of data, combined with analytics, help to drive informed and trusted decisions for our clients. We hold and manage powerful data sets, including credit data on 989 million people and 111 million businesses.

The data we hold varies, for example from how you have repaid credit in the past, to whether a car has been in an accident, to your eligibility for healthcare services in the USA, to how you like to respond to online advertising. Our industry experts collaborate with our data analysts and scientists to create innovative analytics and software to help solve our clients’ challenges.

We provide services in North America, Latin America, UK and Ireland and EMEA/Asia Pacific, and we manage and report our performance across those regions.

We employ more than 16,000 people across 37 countries. Our corporate headquarters are located in Dublin, Ireland, with operational headquarters in Nottingham, UK; California, USA; and São Paulo, Brazil. We are listed on the London Stock Exchange and are a constituent of the FTSE 100 index. For the past five years, Experian has been named by Forbes magazine as one of the 'World's Most Innovative Companies'.

From Russia to South Africa and across to the Nordics, Experian EMEA is a combination of countries, cultures and languages. With around 1500 people it is rich in diversity and with massive potential to grow, being a vibrant and exciting place to work. We have people located in 20 countries and clients in many more. Our purpose is to help our customers realize their full potential through innovative data and decisioning solutions. 


Job Description

We are looking for a Risk Manager in Norway

The Risk Manager is a strategic support role within the EMEA business and will report into the Operations Service Director in the market. This role will be accountable for ensuring we create an effective first line of defence, and providing support to the Exec and senior management of the BU function in the identification, assessment, management and reporting of risk, strengthening the control environment and monitoring of the BU compliance with internal policies and regulations, along with driving improvements in the quality and resolution of issue and loss event management.

This role will also be required to collaborate with other risk roles in the wider community with the aim of fostering more mature, consistent disciplines and ways of working for 1st line risk.

This role is accountable for monthly Risk & Control MI and performance dashboards which act as a single lens on our current status.

The role ensures that risk and control management is integrated into local decision-making activities, strategies, plans, services and capabilities. It will also identify and suggest opportunities to reduce risk exposure and improve overall risk management performance.

The role will also contain Compliance Officer tasks that will be coordinated with the relevant stakeholders. The main assignment for Compliance will be: 

  • Ensuring the business adheres to all relevant legislation, regulations, and user group rules including but not limited to relevant regulators and all relevant industry best practice;
  • Testing and assessing compliance across the business ; and
  • Ensuring any required Compliance changes are successfully implemented into the business.


Risk Management

  • Creation and maintenance of market Risk & Control Self-Assessment (RCSA). Within GRC RCSA module

  • Provision of risk reporting on behalf of market to stakeholders within all three lines of defence

  • Driving maturity and effectiveness of risk management activities aligned with GRM policies and standards

Controls Effectiveness

  • Capture, assessment and testing effectiveness of key controls for market risks within the RCSA

  • Provision of controls reporting on behalf of the market to stakeholders within all three lines of defence

Issues Management (including Policy Deviations and Risk Acceptances)

  • Capture, triage, maintenance and reporting of market issues data within GRC Issue Tracking module (including those that depend on remediation outside of the market)

  • Provision of issues reporting on behalf of the market to stakeholders within all three lines of defence

Loss Event Management (including Root Cause Analysis)

  • Capture, maintain and report market Loss Events within GRC Loss Events module

  • Carry out Root Cause Analysis, raise and manage related Issues within GRC Issue Tracking module

  • Provide Loss Events reporting on behalf of the market to stakeholders within all three lines of defence

Risk Monitoring and Review

  • Produce good quality standardised market risk, issue and loss event MI to meet RMC deadlines

  • Support the MD in escalation of significant / out of tolerance risk exposures to Second Line, Regional Risk Committee and other risk governance forums as appropriate

Policy Compliance

  • Facilitate communication and market adoption of new and revised Global and Regional policy requirements to meet requested deadlines

  • Produce status reports for policy owners, and other stakeholders as requested; ensure escalation of compliance problems / delays to Risk Board meetings.

Risk Governance

  • Providing monthly Risk reporting to GRM for the EMEA RMC

  • Facilitating and chairing a regular Risk Management Board (RMB), including owning and maintaining Terms of Reference (ToRs) and maintaining a log of actions/decisions

  • Performing deep dive reviews on risk themes, horizon scanning to identify potential threats, risks, emerging issues and opportunities

  • Accountable for co-ordinating the Risk and Control attestations with the market MD for the annual Global Attestation process

  • Accountable for facilitating reviews and gap analysis of compliance with all relevant Risk Policies and Standards applicable to the business

Risk Community Collaborator

  • Accountable for creating and fostering a cohesive and collaborative approach within the wider 1st line risk community, promoting consistent levels of risk maturity and professionalism.

  • Accountable for partnering with GRM on behalf of the line 1 risk community to improve the efficiency and effectiveness of risk related activities.

  • The successful candidate will have significant experience of driving forward change and improving performance in a risk environment.


  • An understanding of the regulatory environment in which a CRA/data organisation operates;
  • Experience in a compliance oversight type role is preferred although not essential;
  • Experience of incident management is preferred although not essential;
  • Experience of developing processes and writing reports to a high standard;
  • Experience in dealing with and reporting on compliance risks & issues;
  • Some knowledge and experience of developing and implementing compliance governance frameworks;
  • Good knowledge and experience of the practical application of relevant laws/regulations especially Data Protection/Privacy;
  • Experience of developing processes and writing reports to a high standard;
  • Experience of presenting to senior leadership (up to Director-level);
  • Degree or equivalent in a relevant discipline;
  • Knowledge of GDPR;
  • Regional understanding of data protection requirements across Nordic region;
  • Interaction with data protection regulators

Additional Information

We can offer you a very diverse workday and flexible time schedule. We have a high focus on performance and development, and we are providing tools and guidance in this area and expects employees to thrive in this environment.

Privacy Policy