As part of the IT Risk & Control Framework team, you will actively participate in:
-
Managing technology and cybersecurity risks from a governance and control framework perspective.
-
Participating in technology risk assessment processes (RCSA, risk assessments, gap analysis).
-
Mapping Risks – Controls – KPIs/KRIs, ensuring traceability and consistency of the control framework.
-
Analyzing audit findings (internal and/or external) and defining structured remediation plans.
-
Implementing and monitoring regulatory requirements, especially in the areas of:
o DORA
o Operational Resilience
o Business Continuity
- Third Party Risk Management (TPRM):
o Third-party controls
o Outsourcing
o Technology providers
o Procedures and formal documentation
o Dashboards and executive reporting
o Material for Risk and Technology committees
- Preparation of reporting for senior stakeholders in a global environment.