From 6 locations in the US, the Netherlands, UK, and Hungary, our client supports 20+ country units and 24000+ employees in the world. Their support consists of a wide range of centralized global IT services such as programming, database management, project management, agile/dev/ops, and more.
They continue to maximize the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitization, enhancing customer experience, and improving operational efficiency.
All of these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling our Clients businesses around the globe to be innovative, digital and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.
Tasks
- Help create and execute the annual Risk and Control Self-Assessment year plan
- Facilitate risk assessments & workshops for Processes, Applications, Technologies, and Programs & Projects
- Help identify, assess, and document risks and corresponding mitigation plans or acceptances
- Challenge and advise the business on risk and controls being able to find right risk reward / cost benefit level
- Build and maintain relationships in an international environment with both technical as well as business-oriented people
- Train stakeholders / promote awareness on risk management through our training & awareness program
- Contribute to simplification and optimization of our risk management processes, policies, and control framework
- Create risk profiles and risk reporting and present reports to internal customers and risk & security stakeholders
- Participate in Risk Governance process to provide updates on risks, mitigations, and input on other technical risk.
- Support and participate in internal / external and regulatory audits / policy attestations
- Support the preparation, distribution, and maintenance of plans, instructions, guidance, and standard operating procedures.
Requirements
- 3 + years of risk management experience and knowledge
- Being able to facilitate risk assessments, explain risk lifecycle to stakeholders
- Being able to challenge stakeholders, get to the core of issues and risks
- Excellent communication skills in writing and communicating in clear concise manner, ability to document risks and controls
- Building strong relationships within various departments and across three lines of defense, and work in a multi-cultural and international environment
- Risk Governance qualification CRISC
- Experience with Governance, Risk and Compliance (GRC) tooling such as ServiceNow IRM
- Solid understanding of technology and or IT General Controls. The ideal candidate has knowledge of one or more of the following domains ITIL processes, networking, infrastructure, mainframe, database management systems, datacenter design, AWS / Azure cloud, IT Architecture, office365, IT security.
- Curiosity for new technology and ability to understand the role that it plays for our business and end users
- Ability to break down technology and apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Advantages
- Preferred Risk Governance qualification CGEIT, COBIT, COSO (one or more, or willingness to learn)
- Preferred IT / Security qualifications CISSP, RE, CISM, CISA, ITIL, ISO27000 (one or more, or willingness to learn in short time)
What they offer
- Competitive salary
- Comprehensive health package
- Brand new office at an excellent location
- Hybrid working
- Opportunities for growth and advancement
- A highly people centric, positive and supportive work environment