Risk and Control Senior Specialist

Join us, and be the guardian of our IT infrastructure!

Krakow-based opportunity with the possibility to work 80% remotely!

As a Risk and Control Senior Specialist, you will be working for our client, a global financial services organization renowned for its comprehensive and innovative IT solutions. In this role, you will be pivotal in safeguarding the IT landscape by identifying, assessing, and mitigating risks. You will contribute to the development of robust risk management strategies and collaborate with various teams to ensure the integrity and security of IT systems.

Your main responsibilities:

• Leading and managing IT group control initiatives to identify, assess, and mitigate risks
• Developing and implementing risk management strategies, policies, and procedures
• Conducting regular risk assessments and vulnerability assessments to identify potential threats
• Collaborating with cross-functional teams to establish and maintain effective risk mitigation plans
• Staying current with industry trends, emerging technologies, and regulatory requirements
• Providing guidance and expertise to IT teams on risk-related matters
• Designing and executing training programs to enhance the organization’s understanding of IT risk management
• Collaborating with internal and external auditors to facilitate audits and ensure compliance
• Developing and maintaining key control indicators (KCIs) and key performance indicators (KPIs)
• Investigating and responding to IT security incidents and coordinating incident response activities

You’re ideal for this role if you have:

• Bachelor’s degree in Information Technology, Computer Science, or a related field
• Proven experience in IT risk management, control, and remediation in enterprise-level environments
• Strong knowledge of industry standards, regulations, and best practices related to IT risk and security
• Excellent analytical and problem-solving skills with the ability to assess complex IT environments
• Effective communication and interpersonal skills to work with diverse teams and stakeholders
• Experience in developing and delivering training programs on IT risk management and security awareness

It is a strong plus if you have:

• Relevant certifications such as CISA, CISSP
• Experience with industry-specific regulations and standards
• Advanced skills in risk assessment tools and methodologies

#GETREADY  to meet with us!

We would like to meet you. If you are interested please apply and attach your CV in English or Polish, including a statement that you agree to our processing and storing of your personal data. You can always also apply by sending us an email at recruitment@itds.pl.

Internal number #5850