Operational Risk and Advisory IT and Information Security Specialist

Job description

Job title:

Operational Risk and Advisory IT and Information Security Specialist

Locations:

- Zurich, Switzerland - [other locations not mentioned]

Tasks:

• Development, implementation and execution of risk activities:
• Improving the risk management framework in terms of risk assessment and advice, particularly in relation to new technologies, information security and cyber risks.
• Work with business units to integrate advanced risk management practices into their operations.
• Risk assessment and analysis:
• Perform ad hoc risk assessments and analysis, particularly related to information security and cyber threats, to identify potential issues and propose effective mitigation measures.
• Carrying out incident analyses to determine causes, identify risk mitigation measures and ensure follow-up.
• Consulting:
• Advising business units, including reviewing the internal control framework with a focus on IT and information security with regard to the bank's sustainable business development.
• Expert tips on risk mitigation strategies, particularly in relation to information security and new technologies.
• Reporting and communication:
• Reporting and presentation of risk assessment results to risk management leadership and other relevant stakeholders, with a focus on cyber risks and technology vulnerabilities.
• Preparation of detailed risk reports and presentations for review by senior management.
• Introduction of digital solutions:
• Actively participate in the introduction of new digital solutions to support the implementation of the Internal Control System globally to ensure that these solutions address information security and cyber risks.

Requirements:

• University degree in business administration, economics, natural sciences, information security or a related field.
• 10 years of professional experience, including consulting or audit at a leading professional services firm and/or in a comparable position at a market-leading bank.
• Strong understanding of core banking systems, end-to-end transaction processing and cybersecurity principles.
• Proven ability to write reports and communicate effectively with a senior audience.
• Excellent analytical skills and a structured approach to problem solving and reporting.
• Excellent communication skills in English, both written and verbal.
• Ability to work autonomously and as part of a global team in a fast-paced environment.
• Experience with new technologies and a deep understanding of information security and cyber risk management.

We offer:

• A dynamic and stimulating working environment.
• A global private banking company with a long history.
• A working environment based on mutual respect and appreciation.
• A culture of diversity and inclusivity.

Corporate values:

• Accountability: Taking responsibility for tasks and challenges as well as continuous improvement.
• Hands-on: Proactive approach to deliver high quality results quickly.
• Passionate: Commitment and striving for excellence.
• Solution-oriented: Focus on customer outcomes and treating customers fairly with a risk-aware mindset.
• Partnership