freelance
IT & Security Regulatory Watch Contractor / Risk & Control Governance Lead Reference number: 1923
Last update: 26-05-2021, 14:19
Region: Brussels
Sector: Banking
Start: 15 Jun 2021    End: 31 Dec 2021
Job description
Our client is a global critical financial market infrastructure company.

Strong IT Risk Management and Security are at the core of the company’s services, firmly embedded in their management systems and processes.

The Regulatory Watch, Policies and Controls team is part of the Cyber Information Security Office Division and is in charge of driving the definition and implementation of the policy and control framework addressing the key IT and Security risks and ensuring compliance to all regulations and external requirements applicable to the Technology organization of the group.

The team’s primary location is in Brussels headquarters office.
What you’ll do
  • The role is focused on establishing and operating an IT & Security ‘Regulatory Watch’ function and its necessary related internal processes.
    It covers all existing and upcoming regulatory and external requirements applicable to the technology environment and security

    This new ‘Regulatory Watch’ function is in charge of :
  • Analysing regulations and external requirements applicable to the Technology organisation (based on input and applicability assessment provided by the Legal division)
  • Translating them in the IT and Security policies and internal control framework
  • Ensuring embedding in day-to-day processes by the relevant IT and Security first line owners
  • You will collaborate with regulatory specialists from the Legal, Compliance & Ethics and Risk Management divisions, being their entry point in the Technology organisation and contributing to the end-to-end of our client regulatory change implementation processes
  • Based on your analysis and interpretations of the regulations you will work with the team to improve the policy and control framework and to advise first line stakeholders on their implementation into the organization to manage risk and compliance
Profile
  • University Master’s degree or equivalent experience
  • Broad understanding of the regulatory environment in the financial industry
  • Strong IT business analytical skills, able to translate regulatory language into requirements for the Technology world in alignment with IT and security standards and best practice
  • Professional experience in risk, compliance or legal departments with a focus on regulatory topics impacting IT and security would be a useful asset
  • 5+ years field experience in the IT and security risk, control and compliance environment, preferably in large/enterprise multi-platform-based IT environments
  • Good knowledge of the key principles of the IT and security related industry frameworks such as ISO27001/2, CIS and COBIT
  • You have a strong risk and compliance mind-set: you aspire to a culture of excellence
  • You possess excellent written and verbal communication skills in English (working language) and as well able to write and communicate complex matters in simple terms to non-technical audience
  • You are a good relationship builder with strong diplomacy skills, able to adopt a consultative style in order to combine the business perspective and regulatory aspects
  • You are a highly motivated self-starter and quick learner and you can work proactively in a challenging environment with conflicting or competing priorities
  • You are analytical and risk and compliance oriented. You know how to break down complex regulatory matters into manageable pieces and to address logical links and dependencies. You can distinguish essential information and summarise it accordingly
  • You examine matters from a distance and put them in a broader context and time perspective (vision)
  • You express well-founded opinions and positions and understand their consequences (judgement)
  • Critical mindset and ability to challenge and influence management and IT experts. You obtain approval of others with good arguments, appropriate influencing methods and personal authority (persuasion), constructively challenging and negotiating at all levels
Interested? Send us your resumé
To apply for this job, please complete the form below and join your resume. This instantly places your information into our database. Once we have received your information, we will be in touch by e-mail or phone. If you have not heard from us after 3 working days, please call us!

Thank you for your interest in working with Harvey Nash and we look forward to assisting you in your job search!

Only PDF, max. 10MB

Only PDF, max. 10MB