Senior IT Risk and Control Officer

Are you passionate about finance and modern technology? Do you have good organizational skills? If yes, this is the right place for you. You coordinate the IT Risk and controls out of a central team distributed between Switzerland, Spain and Poland, to ensure appropriate risk methodology and assessment and in-time remediation of deficiencies. You also help the operational SMEs to assess their Risks and Internal Control processes. Together with the diverse and motivated team you help to simplify and optimize the GRC landscape, develop templates and guidance as well as train and educate the organization towards the regulated environment and the need of GRC controls.

What You Will Do 

• Responsible for the proper risk identification, review and management together with operational SMEs

• Assure stakeholder appropriate reporting on the risk and control universe together with LoD2

• Actively develop the GRC tool landscape and help to automate and raise the maturity

• Manage and improve the ICS (Internal Control System) control catalogue and its testing, ensuring completeness, accuracy and alignment with regulatory requirements

• Act as the single point of contact for IT GRC topics and take a coordinator and interface role including training and awareness for line management, SME, projects and GRC initiatives

What You Bring

• Several years of experience in IT Risk & Control, Audit and Operations

• Interdisciplinary knowledge of IT processes, operations and architectures

• Proven experience in IT risk identification, assessment and mitigation strategies

• Understanding and applying IT risk, audit and control methodologies

• Good organizational skills, structured way of working and the ability to identify problems and solve them systematically

• Very good written and spoken English skills. German and/or Spanish are a plus.