IT GRC and Continuous Improvement Specialist

Cambridge

AVEVA

At AVEVA, we work with you and harness the power of our ecosystem, to deliver solutions and expertise to optimize engineering, operations and performance.

View all jobs at AVEVA

Apply now Apply later

AVEVA is a global leader in industrial software. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals and minerals – safely, efficiently and more sustainably.

We’re the first software business in the world to have our sustainability targets validated by the SBTi, and we’ve been recognized for the transparency and ambition of our commitment to diversity, equity, and inclusion. We’ve also recently been named as one of the world’s most innovative companies.

If you’re a curious and collaborative person who wants to make a big impact through technology, then we want to hear from you! Find out more at AVEVA Careers.

For more information about our privacy policy and how to manage cookies, visit our Privacy Policy.

Position: IT Technical Specialist

Location: Cambridge, Derry or London, Hybrid (3 days in the office )

The Job

The role controls all IT GRC activity driven by external/internal audits but also recommends and sets up continuous improvement efforts within IT. The role reports to the Vice President of IT Office and works with IT Managers and teams as required. The key objective of the role is to ensure readiness for Merger & Acquisition activity.

Responsibilities

Governance, Risk and Compliance

  • Maintain IT GRC’s scope and boundaries within the 4 line of defense model
  • Publish and maintain the IT GRC cadence
  • Be the point of contact for Internal/External Audit and other GRC teams
  • Control IT GRC activity within accepted frameworks including SE Trust Standards
  • Draft, control, publish and train IT Policies
  • Set and maintain KPIs for each Policy
  • Measure Compliance to IT Policies and setup activity to close any gaps
  • Control the master list of IT Services and KPIs
  • Maintain and control the master list of IT Risks, Controls and related mappings
  • Prepare submissions for the Executive Risk Committee
  • Ensure evidence of effective control operation is gathered in a timely manner
  • Proactively prepare submissions for audit responses
  • Operate the IT risk radar gathering and assessing risks from across IT
  • Control the master list of IT Services and performance metrics

M&A readiness

  • Prioritize continuous improvement efforts to support M&A due diligence
  • Consolidate and manage the collateral across IT to support M&A due diligence
  • Enable IT teams to continuously improve their IT Processes and Controls
  • Own and publish guiding principles and techniques for use across IT process improvement
  • Coach staff on process mapping (objectives, flowcharts, volumetrics, KPIs…)
  • Track and monitor process improvement action plans and target dates
  • Input into business cases for Investment Committee review
  • Prepare for and support interactions with external advisors / 3rd parties during M&A activity
  • Set and manage scope for M&A programs

    Skills & Qualifications

    • ISACA (or equivalent) qualification:
      • Certified Information Systems Auditor (CISA)
      • Certified Information System Manager (CISM)
      • Certified Governance of Enterprise IT (CGEIT)
    • Minimum two years auditing systems including documenting and presenting recommendations to management
    • Experience estimating cost of remediation activity / projects split by one off vs recurring cost
    • Experience liaising with external and internal auditors
    • Experience of M&A activity an advantage
    • Polished Risk and Control mapping documentation for review by external auditors
    • Appreciation of the impact of risks / control failures on flows of transactions into financial statements
    • Ability to document and coach others on Business Process and System mapping
    • MS Office, especially MS Outlook, Excel, PowerPoint, and SharePoint
    • Analytics skills an advantage

    AVEVA requires all successful applicants to undergo and pass a comprehensive background check before they start employment.  Background checks will be conducted in accordance with local laws and may, subject to those laws,  include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check.  Certain positions dealing with sensitive and/or third party personal data may involve additional background check criteria.


    AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business.
     
    Come and join AVEVA to create the transformative technology that enables our customers to engineer a better world.

    Apply now Apply later

    * Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

    Job stats:  1  0  0
    Category: Compliance Jobs

    Tags: Analytics Audits CISA CISM Compliance Governance Industrial ISACA KPIs Privacy SharePoint

    Perks/benefits: Startup environment

    Region: Europe
    Country: United Kingdom

    More jobs like this

    Explore more career opportunities

    Find even more open roles below ordered by popularity of job title or skills/products/technologies used.