IT Risk & Security Specialist

Job description

The role is accountable for advice, awareness, planning and monitoring of all the activities related to IT & Cybersecurity Risk controls compliance.

It is a role actively motivated to engage stakeholders in the implementation of controls and ensure the IT & Cybersecurity Risk impacts have been identified and prioritized in his/her tribe’s backlog. She/he guides the Tribe team through the whole IT Risk compliance process, ensuring compliance within the change management process and ensuring the maintenance of compliance status for all IT & Cybersecurity Risk controls.

Key responsibilities

• Engage Stakeholders and related squads
• Engage stakeholders (Tribe Leads, Asset Owners, Product Owners and IT Area Leads), in the implementation of controls and ensure the IT Risk controls have been identified and prioritized in the tribe’s backlog. Providing enough visibility about the program and the steps the tribe must follow, including walkthrough, deliverables and estimations. 
• Single Point of Contact between his/her Tribe, Central IT Risk COE and CISO team
• Provide feedback and being the Single Point of Contact between asset´s Product Owners and CISO. Accountable for remediating and solving impediments expressed by Product Owners related to IT & Cybersecurity Risk.​​​​​​​
• Accountable for IT Risk tools (ITRMP) Status of his/her Tribes
• Definition of a Reliable and sustainable IT Risk year plan for his/her Tribe’s assets
• Recurrently reporting to IT Risk Tribe Lead
• Cooperating with IT Risk and Security COE and CISO team in Risk Roadmap Evaluation for the assets in scope of his/her Tribe
• Be Focal point in the Tribe for IT & Cybersecurity Risk Topics
• Continuously train Tribes colleagues, each time that a new colleague join and each time a new IT Risk topic or template comes or and existing one is changed
• Raise issue in case of not possibility of reaching one on the agreed IT & Cybersecurity  Risk targets
• Support, with IT Area Lead, the Tribe Lead in all the topics related to IT & Cybersecurity Risk
• Be continuously aligned with IT Custodian (IT Area Lead) for understanding and receive support on technical knowledge on the Tribe owned assets
• Support other Bank areas during Tech audits

Requirements:

• Degree in Information Technology/Engineering or equivalent
• Knowledge of IT & Cybersecurity Risk processes
• Fluent in English (written and spoken)
• MS Office Advanced User
• Analysis skills

 Soft Skills

• Leadership
• Negotiation skills
• Relational skills
• Teamwork
• Management skills and interaction with stakeholders
• Problem solving
• Customer Centricity
• Excellence in execution