IT Security Control Officer for Technology Risk and Controls

Are you intrigued by the possibility of fighting cyber criminals by assisting people communicate and change their behaviour? Then you might be our new IT Security Control Management Officer in Technology Risk and Controls Framework team, part of Security, Resiliency and Controls – a unit working to keep Danske Bank safe.

As our new Officer, you will be part of the team that offers compliance and formal management services for the IT and cyber security control framework. From a functional perspective, you will primarily provide input to and support the maintenance of the IT controls belonging to stakeholders in the bank. You will get the chance to take ownership in shaping the future security of the bank. 

Our team has the unique opportunity to combine technical security topics with communication, regulatory requirements, and compliance to shape the security culture across the bank.

Who are we? 

Security, Resiliency and Controls headed by the Chief Security Officer, is a part of the technology organization and has the mandate to protect our people, our customers, and our assets from harm – a basic function of a bank being the protection of customers’ money. Our vision is to grow an environment where a transparent view of cyber- and information risk is balanced with business drivers and evolving threats, leveraging high-quality security capabilities to mitigate risk to agreed levels.

We are working with the following Security areas

• IT Control Management: Governing the IT Control Management Lifecycle, monitor and validate IT Controls and build, design and maintain processes.
• Regulatory Requirements: Map external and internal IT requirements towards IT controls, ensure the implementation and ownership of IT Controls and monitor and validate mappings. 
• Document and Process Governance: Facilitate the process of creating and updating security documents and processes (Instructions, SOPs, and Process Diagrams). Furthermore support document owners in creating documents in a well-crafted, understandable, and actionable manner to their target audience.
• Quantitative Risk Analysis Methodology: Manage the quantitative risk analysis methodology to evaluate IT risks severity.

You will

Take ownership and support the direction of control requirements for IT by:

• Solving service requests submitted by stakeholders (IT).
• Support the stakeholder engagement to ensure their needs and requirement are being met.
• Support in facilitating and conducting workshops with stakeholders to provide advisory and ensure maturity improvement.
• Perform and maintain IT Controls to comply with internal policies (Security and IT Risk Management Policy).
• Coordinate, maintain and support your colleagues in Technology Risk and Control Framework.
• Perform control testing activities

About you

First, you are excited about security and technology risk. We imagine that you will do well in this role if you:

• Documented history of hands-on experience in information security, and implementation of security policies, risk management policies and knowledge of frameworks such as ITIL, COBIT, ISO, NIST and/or ISF would be beneficial
• Documented history of hands-on experience in controls management and stakeholder management 
• Advanced English language skills
• 2-3 years of experience in control testing, either from an auditing function or a similar role
• You are a team-oriented person used to working virtually in a global environment, accommodating cultural differences

We offer

We can offer a position located at our office in either Copenhagen or Aarhus. We have a flexible work schedule and hybrid working, allowing you to work from home 1-2 days per week. We're a forward-thinking bank that values diversity, sustainability and believes in the power of digital transformation. We offer a collaborative environment where you can grow, innovate, and make a meaningful impact. You can benefit from our offers such as: Canteen, a highly attractive benefits package offering health insurance, pension, 6 weeks of vacation, 5 care days and more. 

If you have any questions, send an email to hiring manager, Yancey Joseph Westerfield at yawe@danskebank.dk. We are processing applications on a continuous basis so please apply as soon as possible.

We are looking forward to receiving your application.