Risk & Control Assurance Advisor Reference number: 1902
Last update: 23-08-2021, 09:59
Region: Brussels
Sector: Banking
Job description
Our client is a global critical financial market infrastructure company.

Strong IT Risk Management and Security are at the core of the company’s services, firmly embedded in their management systems and processes.

The Regulatory Watch, Policies and Controls team is part of the Cyber Information Security Office Division and is in charge of driving the definition and implementation of the policy and control framework addressing the key IT and Security risks and ensuring compliance to all regulations and external requirements applicable to the Technology organization of the group.

The team’s primary location is in Brussels.
What you’ll do
  • This role is focusing on IT general controls, covering the main Technology areas including IT operations, project delivery, governance, strategy and other key domains.

    Our client control framework is based on COBIT as industry best practice and is being implemented in the ServiceNow GRC platform through the IT Risk & Control programme.
  • You will take an active role both in the programme (change) and in managing the control framework as it is gradually moved to live operation (run)
  • You will contribute to design, co-create and roll out effective controls addressing key risks and regulatory requirements across all IT domains, advising and challenging control owners. By promoting and implementing controls you will help to improve the risk culture and control maturity in IT
  • You will work closely with IT process owners, management across IT divisions and locations, as well as second and third lines of defence (Risk Management and Internal Audit)
  • You have a strong risk mind-set, are a good relationship builder and want to play a critical role in the IT Risk transformation. Proficient (oral and written) communication as well as influencing are part of your main skills

  • University degree or equivalent experience (education in computer science or engineering is a plus)
  • Field experience in the IT risk and control environment or equivalent experience and critical mindset and ability to challenge and influence middle management and IT experts
  • A good understanding of ServiceNow GRC is a strong asset
  • Process-minded and good knowledge of the key principles of the IT related frameworks such as COBIT2019, ITIL and PRINCE2 is a plus (no certification is required)
  • Fluent knowledge of English (verbal, writing, presentation). French and/or Dutch is a plus
  • Experience in large multi-platform-based IT environments, such as IBM Mainframe and distributed systems
  • Soft skills :
  • You have a strong risk mind-set: you aspire to a culture of excellence
  • You have strong leadership and communication skills, whether on the field, in the team or with management: you are a keen team player and coordinate work amongst people from different areas or divisions. A good relationship builder with strong diplomacy skills
  • You are a highly motivated self-starter and quick learner and you can work proactively in a challenging environment with conflicting or competing priorities
  • You are analytical and risk oriented. You know how to break down complex risk situations into manageable pieces and to address logical links and dependencies. You can distinguish essential information and summarise it accordingly. You see how information is linked and you recognise common patterns in elements that seem unrelated at first
  • You examine matters from a distance and putting them in a broader context and time perspective (vision)
  • You express well-founded opinions and positions and understanding their consequences (judgement)
  • You obtain approval of others with good arguments, appropriate influencing methods and personal authority (persuasion)
Interested? Send us your resumé
To apply for this job, please complete the form below and join your resume. This instantly places your information into our database. Once we have received your information, we will be in touch by e-mail or phone. If you have not heard from us after 3 working days, please call us!

Thank you for your interest in working with Harvey Nash and we look forward to assisting you in your job search!

Only PDF, max. 10MB

Only PDF, max. 10MB