Partnering with technology, business, compliance, and audit partners to operationalize technology risk framework.
Lead and participate in IT focused audits demonstrating a solid working understanding of IT Controls Assurance process end-to-end.
Acting as a liaison between audit owners and technology teams to facilitate ongoing audits including SOX, SOC2, and ISAE.
Producing reporting packs for all levels of management to increase awareness of the status of core workstreams.
Developing training and awareness materials to facilitate the inclusion of risk principles across the technology organization.
Reviewing the setup of complex systems and technology governance frameworks in line with industry leading practices (e.g. ITIL, COBIT, NIST, ISO, etc.)
Contribute by providing insights and recommendations to further improve overall technology risk management.
Be responsible for the successful end-to-end delivery of multiple engagements including supporting team members.
Develop strong relationships with stakeholders and potentially identify new risks and suggesting mitigating controls.

Bachelor’s or master’s degree preferably in computer science/ engineering.
Minimum 3 to 5 years of experience in IT, project management/ service delivery, IT risk management or consulting.
Expertise in ITGC, SOC, SOx, 3rd party risk management, project management.
Excellent communication and writing skills.
Good people, analytical and reporting skills with positive and problem-solving mindset.
Ability to work autonomously with a focus on getting things done.
CISA certification preferred.
Other professional certifications such as CISM, COBIT, ISO27001 are a plus.
Knowledge and experience of emerging technology, FinTech, Cloud Services and Cybersecurity will be preferred.

IT Risk Analyst

Key skills