Technology Risk & Controls Analyst

Join us as a Technology Risk & Controls Analyst

• If you have a background in risk and control assessment, testing technology SOX controls then join our team in helping to anticipate and assess the potential impacts of risk across the bank
• We’ll look to you to perform Technology Controls testing and reviews, proactively driving the assessment and implementation of risk framework and policy compliance and changes, converting these into appropriate strategies and action plans
• In this highly collaborative role, you’ll have an ideal platform for building your network and advancing your career, while helping to create a safer environment for the bank
• We're offering this role at associate level

What you'll do

You’ll have the responsibility of supporting management in their identification and assessment of material risks, and in determining their position relative to agreed appetites. Working with senior stakeholders across the bank, you’ll drive the SOX risk assessment technology, and SOX and non-SOX control testing for Services.

On top of this, you’ll be supporting a culture of proactive and pre-emptive risk management and continuous improvement, and the attainment of operational risk objectives.

You’ll also be:

• Planning and scoping to undertake control testing, control deficiency resolution management and reporting
• Engaging with external auditors to communicate the SOX scope coverage testing plan and understanding their focus
• Guiding and influencing senior business and IT stakeholders on SOX and internal control requirements and SOX improvements initiatives, including controls rationalisation and automation
• Creating a culture of continuous improvement, increasing efficiency and productivity through great people leadership coaching engagement and development of skills

The skills you'll need

To be successful in this role, you’ll need a good understanding of technology and the SOX framework, and the ability to perform IT SOX risk assessments and secure technology controls testing in line with internal control and external audit requirements.

You’ll also need experience in testing IT general controls. Ideally, you’ll have experience with Oracle, SQL and Unix, knowledge of COBIT, COSO, NIST and ISO 27000, as well as CISA, CISSP, CRISC or ISO 27001 Lead Auditor certifications, but this isn’t essential.

You’ll also bring:

• A good understanding of the relevant business and the risk and control environment
• The ability to communicate complex ideas and solutions to both business and technical audiences
• The ability to summarise material from a variety of complex sources to support executive commentary within the financial marketplace
• Excellent communication skills in order to work well within the team
• The ability to negotiate with, and influence, stakeholders across an organisation

Hours

Job Posting Closing Date: