Up to £60000 per annum
3 months ago
IT Risk Analyst - Technology Risk Management - ISO27001, NIST, CIS, ISF - IT Auditing - Key Control Testing (TOD/TOE)- Stakeholder Management - Project Management.
City based Financial Services client is seeking an experienced IT Technology Risk Specialist to perform day to day management of the IT Risk Management Framework and the IT Key Control Framework. You will be responsible for risk engagement with all the IT functions, key business stakeholders as well as 3rd parties. You will also be responsible for managing the execution of risk and control management processes.
The completion of risk and control duties requires interaction with many stakeholders so you will need to b a strong self starter able to build relationships across the organisation.
You will have experience of risk assessments, IT risk forecasting, maintenance of IT risk register, managing external audits, performing key control testing, be comfortable promoting a risk aware culture. It will be essential that you understand IT control frameworks (ISO27001, NIST, CIS, ISF) and can demonstrate what you've done in the technology risk space.
Financial services background would be highly advantageous as they are a highly regulated environment and many of the activities you will be doing will be driven by the regulations. This is not a show stopper and training can be provided for the right candidate.
Although it would be great for you to have one of the following accreditations (CISA, CGEIT, CRISC ) it is more important that you demonstrate that you understand what technology risk management means.
This is a newly created role in a busy and expanding team.
Please send CV asap for immediate consideration