IT Risk Manager

This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.

IT Risk Manager

Job ID

177641

Posted

29-Aug-2024

Service line

REI Segment

Role type

Full-time

Areas of Interest

Digital & Technology/Information Technology, Investment Banking, Investment Management

Location(s)

London - England - United Kingdom of Great Britain and Northern Ireland

We are seeking a highly experienced and skilled IT Risk Manager to play a crucial role in managing the IT risk management life-cycle. The successful candidate will be instrumental in mitigating prevalent IT risks, fostering an environment of continuous improvement, and ensuring adherence to industry best practices. The IT Risk Manager will perform IT audits independently and be the bridge between IT, business and external auditor. We are looking for someone who is proactive, pragmatic, ambitious and is experienced in working in a dynamic international environment.

Responsibilities:

• Owning the IT Risk Management life-cycle. Identification of IT risks, assessment of IT risks, mitigation of IT risks, determining lessons-learned, facilitate continues improvement.
• Perform periodic IT risk assessment, and in case of critical IT incidents.
• Identify Critical Applications: Develop a scope document by identifying and assessing critical applications for operations and reporting.
• Assess Risk and Controls: Evaluate risks and controls associated with IT processes for all critical applications, providing detailed assessments and recommendations.
• Specialized Expertise: Leverage specialized skills to pose practical challenges and focus on key areas essential for mitigating IT risks.
• Framework Creation: Utilize extensive experience (10+ years) to create a robust IT internal control framework that aligns with industry best practices and relevant legislations (DORA, AAF, CSSF, GDPR etc.).
• Perform IT audits: Manage the IT audit process with the external audit. Test IT controls as part of multiple audits within the EMEA region (ISAE3402 / UK AAF). Contribute to methodology, scoping and risk mitigation.
• Bridge between IT risk and external auditor.
• Provide guidance to junior IT risk management staff, create IT risk awareness and share IT risk knowledge within the team.

Requirements:

• Experience: Minimum of 5-8 years of relevant experience in IT risk, IT audit, with a proven track record of setting up IT internal control frameworks for multiple companies and environments.
• Expertise: Specialized knowledge in identifying critical applications, mapping IT processes, and assessing risk and controls. Specialized knowledge in Identity & Access Management, Change Management, Business Continuity.
• Industry Best Practices: Familiarity with and adherence to industry best practices in IT internal controls.
• Communication Skills: Strong communication skills to effectively deliver scope documents, flowcharts, and assessments.
• Problem-Solving: Ability to pose practical challenges and provide solutions in a timely manner.
• Stakeholder Management: Strong stakeholder management skills (3 line of risk), experience with Management reporting, external auditor communication.

What we offer:

• An opportunity to positively shape the IT Risk practices and direction of one of the biggest real asset investment managers
• An attractive and performance-related compensation, in line with your background, skills and personal value for the organization and a (discretionary) bonus;
• An open, cooperative and dynamic company culture;
• Challenging work in an expanding and global real estate company;
• Become an integral part of our team, in which your ideas are greatly valued;
• Many learning & development opportunities and motivated and highly professional colleagues;
• Modern workplace in the heart of London;
• (Cash) car allowance;
• Pension scheme & Life Assurance;
• Private medical insurance;
• Two community leave days (leave days that can be used for a 'diversity day' or a 'day to volunteer' or two days to volunteer);
• 25 days of annual leave + 2 extra days for Christmas.

We are an inclusive employer and consider diversity to be critical to innovation. People are our greatest resource, and we encourage applicants who partially fit the above criteria to apply if they feel the posting has not captured their relevant strengths. #CBREIM

Investment Management

CBRE Investment Management is a leading global real assets investment management firm operating in over 30 offices and 20 countries around the world. Through its investor-operator culture, the firm seeks to deliver sustainable investment solutions across real assets categories, geographies, risk profiles and execution formats so that its clients, users, people and communities thrive.

Find out more