We are seeking an experienced ICT Risk Specialist to lead and evolve our technology risk capabilities within a digital-first, globally regulated financial environment. This role requires a blend of deep technical expertise and strong GRC leadership together with the ability to manage technology-related projects and service delivery activities.
About the role
ICT Risk Management
- Lead the full lifecycle of ICT Risk management: identification, evaluation, mitigation, monitoring, and reporting.
- Conduct and oversee technical risk assessments, including cloud, infrastructure, networks, applications, DevSecOps practices, and critical third parties.
- Maintain and enhance the ICT Risk Register, KRIs, and risk reporting processes aligned with risk appetite and regulatory expectations.
Technical Expertise
- Review and challenge technical controls across IAM/PAM, EDR/XDR, SIEM, WAF, encryption, network...