IT Risk & Controls Specialist

IT Risk & Controls Specialist - Inside IR35 - Hybrid

Our client, a leading global banking organisation have an exciting opportunity for an IT Risk & Controls specialist to help support the IT Risk & Control Lead. In this role you will be responsible for managing IT Risk & Controls environment including related policies, standards and processes along with implementing the IT Risk and Control framework within 1st line Technology. You will be required to work closely with all areas to ensure clear visibility of Risk with all IT staff.

Skills & responsibilities:

• Strong technical background with proven xperience in risk and control management with proven IT controls, and/or IT risks and/or IT governance skills.
• Certified CRISC / CISA / CISM / CISSP or other relevant qualifications.
• Knowledge of cyber security controls and tooling desirable.
• Enact the department’s strategy and roadmap
• Ensure strong relationship is built with both 2nd line (ORM) and 3rd line (Audit)
• Be constantly aware of costs and ensure that opportunities to optimise them are applied
• Ensure Risk and Control reporting internationally is accurate and timely
• Work with 2nd line to populate the risk system accurately for IT
• Ensure FFIEC is thoroughly prepared for and managed
• Ensure that all security regulatory requirements are fully complied with across EMEA IT, including SOX and that internal IT assessments and appropriate defences and controls are in place to deal with all cyber risks.
• Lead the audit process for technology, working closely with all areas, especially the Infrastructure team for alignment of controls
• Manage the risk portfolio to include linking risk to controls, acceptance of risk and managing remediation plans; conducting control testing when appropriate.
• Manage the end to end Security by Design process
• Manage the annual (and ad-hoc) risk assessments
• Manage regulatory change monitoring and impact assessments  
• Manage the EUC framework including central register, annual attestation, control testing and reporting
• Manage reporting requirements for Technology and executive committees

IT Risk & Controls Specialist - Inside IR35 - Hybrid

Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. 

Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation

We take our obligations to protect your personal data very seriously.  Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website (url removed)