IT Risk Specialist

IT Risk Specialist

Overview
Why join us in 2024?
Think of the digital tools we use daily - from virtual shopping to contactless payments. They're shaping our future. Join us to influence the future of digital banking in an innovative environment. With our global merger, the opportunities for personal growth and collaboration are immense.

If you join us in the role of IT Risk Specialist, this is what you can expect from us :

• Attractive Salary & Competitive Package: We value your expertise and ensure you’re rewarded for your contributions.
• Comprehensive Training & Support: Receive well-structured training and continuous guidance from your manager.
• Hybrid Work Environment: Enjoy the flexibility of hybrid working, with an expectation of mainly being in the office.
• Flexible Work Hours: We understand the importance of work-life balance.
• Home Equipment Allowance: Get the resources you need to work comfortably from home.
• Necessary Equipment Provided: We supply a laptop, mobile phone, and a monthly subscription.
• Health & Dental Insurance: Your well-being is our priority.
• Referral Bonuses: Bring your friends and earn rewards when they join our team

About your future role
As an IT Risk Specialist, you will be part of a passionate IT Risk management team within a larger Risk Management department in the second line of defense. You will work in a collaborative and hands-on environment with a relaxed atmosphere that emphasizes a good team dynamic and knowledge sharing. Being part of a larger group provides a network across Europe, offering opportunities to share knowledge and experience broadly. You will regularly interact with the Group IT Risk management team and contribute to shaping the future of IT Risk management across the Group.

The position is in Ballerup, Greater Copenhagen area and offers hybrid ways of working, enabling flexibility in working hours and working place.

Your key responsibilities in this role will be:

• Third-party Assurance Report: Serve as the SME for third-party reporting assurance, encompassing ISAE3402 and supporting ISAE3000 (Data privacy). Act as SPOC supporting the external auditors, internal audit, cybersecurity, and IT owners.
• IT Risk Assessments: Collaborate with cross-functional teams to identify and assess IT risks, devising and implementing mitigation strategies for critical services, new products, and projects.
• Support First Line of Defense: Support the first line of defense in IT risk assessments, ensuring alignment with company policies.
• Remediation Tracking: Track remediation internally and externally through to resolution while supporting the design and operational effectiveness of controls.
• Internal Control Inquiries: Address internal control inquiries from both internal and external stakeholders.
• Compliance Support: Ensure compliance with relevant regulatory requirements, industry standards, and best practices related to IT risk management.
• Risk Analysis: Analyse and assess different types of information flows to identify potential IT and security risks.
• EUC Applications: Facilitate and support the business service owner to ensure a systematic approach for identification, evaluation, mitigation, and monitoring of any significant risks related to the use of EUC applications.
• Customer IT Risk Reporting: Present the updated status of action plans addressing the current risk landscape and audit findings to key customers during the Quarterly Risk Meeting.

What makes you the best person for this job?
As you read about the role, are you eager to learn more? If so, review the qualifications that fit you for the position. Remember, beyond your skills and experience, it's your potential that sets you up for success in your daily tasks.

Capabilities needed to be successful in this role:

• Familiarity with (preferably solid experience with) using relevant industry standard IT standards and frameworks such as IRAM2, COBIT, ITIL, ISO27001, or others.
• Strong understanding of regulatory requirements and industry standards (e.g. EBA, DORA, GDPR, ISO 27001/27002, NIST, PSD2, ISO 22301, NIS2) related to IT risk management and cybersecurity.
• Demonstrate the ability to take full ownership of activities and responsibilities, ensuring tasks are completed efficiently and effectively, and proactively addressing any challenges that may arise.
• Strong interpersonal, communication and presentation skills necessary for interaction with business leaders and teams across all levels of the organization.
• Passionate about continuously acquiring knowledge and desire to grow.
• Foster a work environment that promotes respect, cultural awareness, and the development of skills to engage effectively with individuals from diverse backgrounds.
• Knowledge of both the financial services industry and the payment processing industry is a plus.

Education and background:

• Degree in Engineering, Computer Science, Information Systems, or a related field; advanced degree or relevant certifications (e.g., CISSP, CISM, CRISC, CISA) preferred.
• At least 5 years of work experience in IT risk management, cybersecurity, IT audit or related fields.
• Excellent command of spoken and written English.

Apply now! If this opportunity resonates with you, we'd love to hear from you!

Please apply at your earliest convenience. We'll be reviewing applications continuously and closing the position once we've found the right fit. We are committed to creating a diverse culture where talents from all walks of life can feel like they truly belong.

By exploring this job opening, you're one step closer to joining us. We're excited to learn more about you!

Work location
Denmark