2022-07-29 11:26:48

Information Risk Analyst in Group IT Security and Risk

CVMarket.lt klientas

Job Description

To further strengthen and maturing Danske Bank’s IT risk management processes to become best practice we seek a talented Information Risk Analyst to focus on establishing and implementing controls and securing stable and quality in control execution in Group IT. The IT Risk Management team is part of Group IT Security & Risk and primarily responsible for IT and Operational Risk Management, performing creating and maintaining security policies, business procedures, ensuring that the IT organization is compliant with the security policy, regulatory requirements and payment schemes from an IT perspective. We also undertake controlling tasks and oversight of threat and risk levels in the IT Organization and report at executive and board level.

We are seeking an Information Risk Analyst with knowledge of international best practices for IT risk management, preferably with preferences within managing a control environment in terms of ensuring controls are defined and completed as well as assessing control efficiency executing controls. The candidate will be placed in Lithuania together with other members of the IT risk management team.

Responsibilities:

  • Ensure that significant operational controls in the IT environment are captured and registered to enable consistent monitoring of the control environment – predominantly with knowledge of mainframe and server environment
  • Assist in ensuring that IT controls are completed including assessing the efficiency and adequacy of the controls
  • Ensure that security and quality management processes are timely executed and improved
  • Assist in performing reviews according to security and quality management standards
  • Analyze compliance requirements (Security, Legal/regulatory, payment schemes) to identify breaches or to assure of compliance.

Requirements

  • A degree in IT engineering, IT Auditing
  • Preferred 3+ years of experience with information security, IT risk management, IT auditing or in a legal/compliance function related to IT, however, junior risk profiles are also encouraged to apply
  • A solid basic understanding of IT technology and operations process which can be used in a risk, security and quality context
  • Analytical and structured thinking
  • Very good English (verbally and in writing) as reporting at executive level and to authorities is part of the job
  • Prior experience with information security and controls
  • Prior experience in IT operations within mainframe and server environment
  • Relevant IT and security certifications such as CISSP, ITIL, Six Sigma, ISO27001  or documented education within best practice IT risk management frameworks or standards
  • Ability to develop methods and documentation for IT risk management procedures and controls.
  • Ability to conduct risk reviews and optimize processes

Company offers

  • An inspiring environment in a large IT organization
  • A perfect opportunity to join an IT team and face the challenge and the opportunity to influence and shape the organization
  • Work in an international team, which concentrates on innovative business facing solutions
  • An extensive learning opportunities to ensure that your skills are maintained and updated on an ongoing basis
  • Highly skilled team and career opportunities
  • Cross business career opportunities in bank