Risk Senior Analyst in Business Consulting
Warszawa, PL, 00-124
EY
Mit unseren vier integrierten Geschäftsbereichen — Wirtschaftsprüfung und prüfungsnahe Dienstleistungen, Steuerberatung, Unternehmensberatung und Strategy and Transactions — sowie unserem Branchenwissen unterstützen wir unsere Mandanten dabei,...
The opportunity:
As a Senior Consultant / Assistant Manager in our Technology Risk Team at EY in Warsaw, Poland, you will play a crucial role in advising companies across a spectrum of industries. Your expertise will help clients maintain confidence and capitalize on opportunities in a dynamic global landscape. You will be at the forefront of supporting our clients in key areas such as “Digital Risk Management”, “Bank Risk Management”, “Compliance Risk Management”, “Third-Party Risk Management”, and “Operational Risk Management”.
Your role involves delivering strategic insights and actionable solutions that assist our clients in effectively managing risks, complying with regulations, and strengthening their risk frameworks.
Furthermore, you will be instrumental in conducting “Internal Audits” and related tasks, pivotal for establishing and maintaining rigorous risk management practices and control mechanisms.
Your scope of duties:
- Work with a team to deliver comprehensive risk management insights and solutions specifically tailored for banking clients.
- Develop and enhance risk management frameworks that encompass digital risk, operational risk, third-party risk, and other banking-specific risks.
- Support the execution and improvement of internal audit processes within banks, identifying compliance gaps and areas for improvement.
- Build strong relationships within EY and with banking clients, promoting a culture of collaboration and trust.
- Contribute to the development and implementation of strategies for responding to and recovering from significant ICT disruptions, in alignment with DORA standards and DFSA expectations.
- Participate in the Cyber Stress Test (CST) Initiative by engaging in workstream projects focused on Governance, Business Management, Disaster Recovery, Crisis Management, and Management of Reputation.
- Assist in the creation of a comprehensive operational resilience plan that addresses ICT disruption response and recovery capabilities.
- Collaborate with cross-functional teams to ensure compliance with regulatory standards and enhance the firm's operational resilience.
- Provide support in delivering technology, process, and third-party risk assessments, ensuring alignment with M&G standards and DORA requirements.
- Assist with updating M&G processes and templates to address any gaps identified in the gap analysis against DORA text and Regulatory Technical Standards (RTS).
- EY.AI - in this role, your capabilities are augmented by artificial intelligence. With AI-powered solutions your analyses, insights and innovative ideas will reach a higher level. Starting with a series of training sessions, you will then use EYQ - your virtual assistant, along with other unique tools often available exclusively at EY. We continuously invest in innovation to provide you with a work environment where you can focus on the most interesting aspects of your job and create the best solutions for clients
Experience:
- > 3 years of professional experience in the area of Risk Management, particularly in the digital and banking risk management domain, Risk Analytics, Third-Party Risk Management, Internal Audit, Internal Controls or other relevant areas.
- Experience with Governance, Risk & Compliance (GRC) technology platforms like SAP GRC, ServiceNow or similar.
- Knowledge of industry frameworks and standards such as NIST and ISO/IEC 27001.
- Knowledge of DORA standards and DFSA regulations.
- Experience with new technologies and digitalization.
- Familiarity with operational resilience planning and ICT disruption recovery strategies.
- Experience in participating in or leading Cyber Stress Tests and related initiatives.
Skills:
- Bachelor’s or master’s degree in Business Administration, Economics, Computer Science, Information Systems or other relevant programs.
- Strong interest in new technologies and digital transformation.
- Proven ability to apply NIST and ISO/IEC 27001 standards to enhance technology risk management and information security practices.
- Problem-solving abilities for comprehensive risk identification and assessment.
- Excellent communication and interpersonal skills to interact with clients and team members.
- Analytical skills and willingness to perform analytical tasks handling large amounts of data
- Proficiency in using technology and software tools for data analysis and reporting.
- Ability to interpret and apply complex regulations and laws to real-world situations.
- Attention to detail and a meticulous approach to documentation and reporting.
- A proactive mindset with the ability to anticipate issues and develop strategic solutions.
- Willingness to travel (up to 40%) in Europe and across the Globe.
- Strong communication skills in English is a must. Any additional language spoken is considered as a plus.
Other Requirements:
- Experience of managing and delivering complex projects in the area of technology risk.
- Familiarity with industry-standard risk assessment methodologies and frameworks.
- Experience with data privacy regulations such as GDPR.
- Capacity to work collaboratively with IT and business units to align technology risk management with business objectives.
- Strong project management skills, with the ability to lead cross-functional teams and drive results.
- Commitment to continuous professional development and staying abreast of emerging technology risks and trends.
- Excellent organizational skills, with the capability to prioritize tasks and manage time efficiently.
- Willingness to travel as required to meet client needs and project requirements.
- Advanced degree in a related field (IT, Cybersecurity, Business Administration) is preferred.
Certifications:
- Professional certifications such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), ISO 27001 Lead Auditor, Certified Anti-Money Laundering Specialist (CAMS).
What we offer:
- Support in acquiring qualifications and certificates,
- Udemy for Business – access to over 3000 courses,
- Go Fluent – platform that offers language courses on various levels,
- EY Badges – global certification of your competencies and an opportunity to earn an MBA title of a reputable Hult International Business School,
- Career Counselor – assigned experienced advisor, who will support your career growth in EY,
- Innovate EY – unique program thanks to which you can create your own start-up utilizing our know-how and financing,
- EY Care&Wellness – benefits program.
About EY Poland
We are a global consulting company – we help entrepreneurs, organizations and societies to utilize their potential in the best way. Audit, consulting, law, strategy, tax and transaction teams ask unexpected questions to be able to find new answers to complex challenges that today’s world faces.
We currently employ over 300 000 exceptional people in over 150 countries in the world. In Poland we are over 5000, we work in: Warsaw, Gdańsk, Katowice, Cracow, Łódź, Poznań, Rzeszów and Wrocław.
Together we create amazing things every day. We have people, a development path and trainings, thanks to which you will be able to grow quickly while gaining experience on various projects.
We care about the environment – not only the business one. EY announced – as the first company out of the Big 4 – a plan to reduce the emission of CO2 to achieve the goal of Net Zero emission in 2025. As a part of this plan we have reduced our global greenhouse gas emission in the financial year 2021 by as much as 60% and we have reached the goal of negative CO2 emission on the scale of the whole organization.
EY is an employer of equal opportunities, we appreciate diversity in knowledge and experience of our employees. EY ensure that every candidate has an equal chance in the recruitment process, no matter the gender, age, race, religion, sexual orientation, origin, disability or any other legally protected basis according to the applicable law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Artificial Intelligence Audits Banking CISA Compliance Computer Science CRISC GDPR Governance ISO 27001 NIST Privacy Risk assessment Risk management SAP Strategy
Perks/benefits: Career development Startup environment Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.