The Business Architect provides the analytical and design backbone of the Helix Third Party Resilience Business Program

They translate real world incidents business processes control gaps and supplier behaviours into a coherent resilience architecture

Their primary mission is to design and maintain the capability question framework that tests the resilience posture of business owned suppliers ensuring alignment to operational resilience regulation PRA SS121 DORA ACMEs IBS mapping and the Helix four pillar methodology

Key Responsibilities

1 Incident Control Intelligence Capability Questions

• Analyse realworld Helios incidents and trace them through business processes activities and supplier responsibilities
• Derive rootcausetocontrol logic converting insights into closed testable capability questions for the BRU supplier assessments
• Build synthetic incident scenarios controlbased what ifs to expose resilience gaps before they occur in production
• Ensure all questions align to the CQT Capability Question Template framework

2 Business Architecture Mapping

• Lead the linkage between IBS Business Process Business Activity Supplier Activity Controls Incidents
• Maintain a coherent resilience architecture blueprint showing how suppliers support the banks critical journeys eg LMS Mastercard Visa Broadcom Arcot
• Partner with Enterprise Architecture and Service Management to ensure mappings remain accurate and consistent across markets
• Work with Helix stream leads to design the expected state of supplier resilience controls recoverability incident prevention and response
• Provide architectural input into remediation action design ensuring actions are targeted nonduplicative and traceable back to root causes
• Define architectural principles for supplier dependency impact tolerances control ownership and shared service boundaries

4 Regulatory Evidence Traceability

Ensure every capability question and remediation action can be traced to

• a root cause or control deficiency
• the incident that exposed it
• the IBSbusiness context
• the regulatory requirement being met
• Produce clean audit and regulatory artefacts explaining the why behind each question control or capability uplift

5 Data Insights Platform Enablement

Partner with the BI team to shape dashboards showing

• control performance
• remediation progress
• cross supplier thematic risks

Define metadata standards for capability questions and incidents to ensure BRU has a consistent scalable data model

What you need to have to succeed in this role

• Strong experience in business architecture operational resilience or complex process modelling
• Ability to convert technical incidents into simple business led narratives and testable control questions
• Deep understanding of end to end customer journeys and supplier integration points
• Skilled in root cause analysis thematic analysis and control framework design
• Ability to work with senior stakeholders Group BRR Service Owners Procurement
• Exceptional written communication skills to produce regulator ready artefacts