Join a Growing IT Risk & Control Team at a Leading Insurance Company!
We are looking for multiple new colleagues to join the dynamically expanding IT Risk & Control team of our insurance client. The open positions share a common focus on IT risk management and controls, while each role has its unique responsibilities:
One of the new team members will join the First Line Risk and Controls (FLRC) Operations team and will be responsible for executing technology key control monitoring, general technology compliance activities, and supporting related governance and management reporting.
Another colleague will focus on performing information technology (IT) controls testing and supporting the technology organization as well as various risk, controls, and compliance teams within the company.
Additionally, we are seeking a specialist responsible for conducting IT risk assessments in support of the technology organization and its associated risk and compliance functions.
If you are passionate about technology risk, controls, and compliance in a complex corporate environment, this is your opportunity to make an impact!
What you will do
- Support regulatory compliance initiatives with IT impact and raise awareness of IT risks to management for informed decision-making
- Contribute to the development and execution of risk assessments, workshops, and annual Risk and Control Self-Assessment (RCSA) activities
- Identify, assess, and document IT risks, controls, and mitigation strategies, including supporting risk acceptance processes
- Perform IT control testing and evidence collection across applications, systems, databases, and cloud environments
- Support the development and reporting of risk and compliance metrics, including GRC tool (e.g., ServiceNow) management
- Assist in training and awareness initiatives related to IT compliance and risk management
- Collaborate cross-functionally with teams including IT Risk, Information Security, Internal Controls, Internal Audit, and external consultants
- Contribute to the continuous improvement of IT risk management processes, policies, and control frameworks
- Participate in small to mid-size IT risk or compliance-related projects
- Help identify and implement process efficiencies across compliance and control activities
What you will need
- We are hiring for multiple IT Risk & Control roles with slightly different focus areas (risk assessment, control testing, and compliance). The common qualifications across these roles include:
- Bachelor’s degree in Information Technology, Computer Science, Management Information Systems, or equivalent experience
- 2–4 years of relevant experience in areas such as IT Risk & Compliance, Information Security, IT Governance, or Internal/External Audit
- Solid understanding of IT General Controls and risk management principles
- Familiarity with IT governance frameworks (e.g., COBIT, ITIL, ISO 27001) and relevant regulations/standards
- Strong analytical and problem-solving skills
- Excellent written and verbal communication skills
- Ability to build relationships and collaborate effectively across teams
- Tactful, diplomatic, and professional communication at all levels of the organization
- Strong organizational and project coordination skills
- Experience with GRC tools or risk management software is a plus
- A proactive, improvement-driven mindset and willingness to contribute to a risk-aware culture
Preferred
- Strong knowledge and/or prior experience in the insurance, pensions or financial services industry, including the applicable business processes and technology.
- One or more of the following certifications:
- (CRISC) Certified in Risk and Information Systems Control
- (CGEIT) Certified in in the Governance of Enterprise IT
- (CISM) Certified Information Security Manager
- (CISA) Certified Information Security Auditor
- Proficient in the use of Microsoft Office (Excel and PowerPoint), Power BI and Power Automate.
- Risk management background with a proven history of success
- A strong understanding of risk management processes, design techniques, and best practice
What they offer
- Competitive salary
- Comprehensive health package
- Brand new office at an excellent location
- Hybrid working
- Opportunities for growth and advancement
- A highly people centric, positive and supportive work environment