ICT Risk and Compliance Specialist

At Madiff, we connect top IT talent with cutting-edge companies through remote Agile teams and nearshore outsourcing. With operations in Poland, Portugal, France, and the UK, we specialize in AI, DevOps, Cybersecurity, supporting industries like Telecom, Banking, and Hi-Tech.

We are seeking a specialist with expertise in ICT risk management, information security, and compliance to ensure effective risk identification, mitigation, and regulatory compliance. This role involves working closely with risk owners, regulatory bodies, and internal teams to uphold security standards and manage IT infrastructure risks, particularly in financial institutions or regulated environments.

Your role:

• Identify and assess ICT risks, collaborate with risk owners, and maintain the risk register
• Support the development and monitoring of ICT risk mitigation plans
• Oversee Key Risk Indicator (KRI) reporting to regulatory bodies and prepare consolidated reports
• Work with internal teams to ensure risk control measures and compliance frameworks are in place
• Plan and monitor digital resilience tests, assessing and documenting their outcomes
• Review ICT risk management frameworks to ensure alignment with regulatory requirements
• Prepare reports on ICT risk assessments and mitigation strategies
• Evaluate and monitor risks associated with external ICT service providers, ensuring contract compliance and exit strategies
• Develop and update policies and procedures for ICT risk management and information security
• Provide support in audits, ICT risk controls, and regulatory compliance assessments
• Actively participate in cross-organizational risk management teams

What we’re looking for:

• Min. 3 years of professional experience in risk management, information security, or compliance roles
• Strong knowledge of regulatory requirements and industry standards for ICT security and risk management
• Understanding of cybersecurity, networking, IT infrastructure, business IT systems
• Familiarity with risk assessment methodologies and tools

Preferred qualifications:

• Knowledge of security frameworks and standards such as NIST, CIS Benchmarks, MITRE ATT&CK
• Experience working in regulated financial institutions
• Familiarity with regulatory interactions and compliance implementation
• Strong collaboration and analytical problem-solving skills
• Ability to perform under pressure and make informed decisions efficiently

What we offer:

• Fully remote job
• Work in a multicultural, international environment on global insurance projects
• Comprehensive medical care to support your well-being

If you are ready to take on a key role in ICT risk and compliance, apply now!