Risk Management interview prep.

Behavioural questions to expect

1. Walk me through your CV.
2. Tell me about your most impactful risk decision or project.
3. Tell me about a weakness, a failure, or feedback you've received and worked on.
4. Why payments + fintech risk - and why the firm's segment vs general bank risk or pure model work?
5. Which risk sub-function would you want to own, and why?
6. Why the firm?
7. How would you describe the firm's risk posture + risk organisation in your own words?
8. How does risk actually drive value at a payments firm like the firm?

Technical concepts to master

• Fraud + risk modelling fundamentals

  Rules vs ML vs vendor scoring · FPR / TPR + ROC + precision / recall + AUC · Champion-challenger + holdout + back-test · Model risk management (MRM) + governance

• Chargebacks + disputes lifecycle

  Reason codes + dispute types · Representment + compelling evidence · Acquirer + scheme monitoring programs · Pre-emptive dispute tools

• AML + sanctions + KYC fundamentals

  KYC + CDD + EDD · Transaction monitoring + SAR · Sanctions screening · Three-lines-of-defence + regulator engagement

• Loss vs friction + approval-rate economics

  Approval-rate economics · False-positive cost · Step-up + friction-as-a-lever · Segment-aware + customer-lifetime view

Practical drills

• the firm is acquiring for a high-volume merchant doing $500m / year in card-not-present TPV. Last month they processed $42m, had $580k in disputes (of which $380k were fraud-coded), $120k in confirmed fraud loss, and $190k in chargeback loss after representment (win rate 30%). (a) Fraud-to-sales ratio? (b) Chargeback ratio? (c) Where do they sit vs standard tier + high-risk tier thresholds? (d) What's the loss bps + how does it compare to the ~7-15bps CNP benchmark?
• the firm is launching a new P2P wallet for consumers in 6 months. Funding source = bank account (ACH pull); send / receive = real-time; limits = $1k / day, $5k / week. Walk me through the fraud + risk strategy you'd build pre-launch.
• Friday morning the dashboard shows fraud-loss bps on card-not-present jumped from a baseline ~10bps to ~45bps over the last 72 hours. Approval rate is unchanged. No deploys this week. Walk me through how you'd diagnose + contain.

Smart-question anchors

• Sub-function + scope - which risk sub-function the role would own + the loss + approval line it carries
• Model + policy stack - rules + ML + vendor mix, MRM maturity, recent or planned re-architecture
• Loss + approval posture - disclosed loss bps + approval rate trend, scheme-monitoring history, KRI dashboard
• Regulator + scheme + sponsor-bank - the firm's relationship + cadence with regulators, schemes, sponsor banks
• Risk + product partnership - how risk + product co-own the funnel, where the friction trade is hardest

Sourced from

Federal Reserve — The Federal Reserve Payments Study + payments-fraud landscape · ACAMS — Anti-Money-Laundering Specialist Certification body of knowledge · ACFE — Association of Certified Fraud Examiners + Report to the Nations · McKinsey + Deloitte — Payments + fraud risk management publications · InterviewPrep + Wall Street Oasis — Risk Management interview canon · PCI Security Standards Council + scheme rule frameworks (chargeback + monitoring programs)