IT Risk & Control Framework Consultant

As part of the IT Risk & Control Framework team, you will actively participate in:

• Managing technology and cybersecurity risks from a governance and control framework perspective.

• Participating in technology risk assessment processes (RCSA, risk assessments, gap analysis).

• Mapping Risks – Controls – KPIs/KRIs, ensuring traceability and consistency of the control framework.

• Analyzing audit findings (internal and/or external) and defining structured remediation plans.

• Implementing and monitoring regulatory requirements, especially in the areas of:

o DORA

o Operational Resilience

o Business Continuity

• Third Party Risk Management (TPRM):

o Third-party controls

o Outsourcing

o Technology providers

• Evaluation and improvement of policies, procedures, and technology standards.

• Preparation of:

o Procedures and formal documentation

o Dashboards and executive reporting

o Material for Risk and Technology committees

• Preparation of reporting for senior stakeholders in a global environment.