Stellenangebot

ICT Risk Management Officer

Wir suchen einen ICT Risk Management Officer, der für die Identifizierung, Analyse und Minderung von Risiken in unseren Informations- und Kommunikationstechnologiesystemen verantwortlich ist, insbesondere im Hinblick auf die Einhaltung der neuen DORA-Regulierung. Der ideale Kandidat verfügt über eine starke Grundlage in ICT-Risikomanagement und exzellente analytische Fähigkeiten.

Ausland

Unbekanntes Unternehmen (fa-eqai-saasfaprod1.fa.ocs.oraclecloud.com)

100%

Job Description

ICT Risk Management Officer

General Information

  • Department: Global CISO
  • Work time: Percentage: 100%
  • Location: Ideally Geneva – Option for Lugano or Zurich

Job Summary

We are looking for a highly skilled ICT Risk Management Officer to join our Information Security organisation. This pivotal role involves identifying, analyzing, and mitigating risks associated with our Information and Communication Technology (ICT) systems, with a specific focus on supporting compliance with the new Digital Operational Resilience Act (DORA) regulation.

Key Responsibilities

  • Risk Identification and Assessment: Conduct thorough assessments of ICT risks, including emerging threats, vulnerabilities, and potential impacts on the bank's operations. Support the identification, assessment, and treatment of IT, Information Security, third-party, and data-related risks.
  • Risk Mitigation: Develop and implement strategies to mitigate identified risks, ensuring that ICT systems are secure and resilient.
  • Policy Development: Create and maintain and implement ICT risk management policies, procedures, and frameworks in alignment with DORA regulatory requirements and industry best practices.
  • Monitoring and Reporting: Continuously monitor the ICT risk environment and provide regular reports to senior management, highlighting key risks and mitigation measures. Prepare risk management reports for the Group's relevant governance bodies, including senior action plans are in place for risks outside of the bank's risk appetite.
  • Stakeholder Collaboration: Build and maintain strong and positive working relationships with stakeholders in the first and second lines, ensuring effective communication and collaboration. Participate in the coordination and delivery of IT and Information Security risk control improvement actions and report on assessment outcomes.
  • Regulatory Compliance: Ensure compliance with DORA and other relevant regulatory requirements, standards, and guidelines related to ICT risk management. Stay abreast of emerging risks affecting the financial industry.
  • Training and Awareness: Conduct training sessions and workshops to raise awareness about ICT risks and promote best practices across the organisation. Educate and raise awareness within the bank on best practices for risk management.
  • Incident Management: Lead the response to ICT-related incidents, ensuring timely resolution and post-incident analysis to prevent recurrence.

Skills and Experience

  • Educational Background: Bachelor's degree in Information Technology, Computer Science, Risk Management, or a related field. A Master's degree or professional certifications (e.g., CISSP, CISM, CRISC, CISA) are preferred.
  • Experience: Minimum 5 years of experience in information security risk management, preferably within a financial institution or consulting.
  • Technical Expertise: Strong understanding of ICT systems, cybersecurity, risk assessment methodologies, and mitigation strategies. Experience in designing and implementing international IT and information security frameworks such as ISO, NIST, COBIT.
  • Experience in third-party risk management is a plus.
  • Analytical Skills: Excellent analytical and problem-solving skills, with the ability to identify and assess complex risks.
  • Communication Skills: Strong verbal and written communication skills, with the ability to effectively convey technical information to non-technical stakeholders.
  • Project Management: Proven experience in managing risk-related projects and initiatives, with the ability to prioritize tasks and meet deadlines.
  • Regulatory Knowledge: Familiarity with European and Swiss regulations relating to Information Technology (IT), Information Security, including the EU Digital Operational Resilience Act (DORA).
  • Language Skills: Fluent in English; French or Italian can be a plus.
  • Personal Attributes: Self-motivated, organised, able to work under pressure, and manage priorities in a rapidly evolving environment.

Wir bieten

  • Eine dynamische und unterstützende Arbeitsumgebung
  • Eine faire und inklusive Unternehmenskultur
  • Eine Chance, Teil eines globalen Teams zu sein

Original Job-Beschreibung

Jobdetails

Gefunden am:

22/7/2025

Arbeitgeber:

Unbekanntes Unternehmen (fa-eqai-saasfaprod1.fa.ocs.oraclecloud.com)

Stellenprozent:

100%

Arbeitsort:

Ausland

Stelle gefunden auf:

https://fa-eqai-saasfaprod1.fa.ocs.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1001/job/5666

Über den Arbeitgeber:

Unbekannt.

Unbekannt.

Unbekannt.

Unbekannt.

Weiterbildungsangebote powered by skillaware.
Kategorien
ShortsWebinareLehrgangStoriesOnline ChecksEvents
Seiten
Alle AngeboteAbout usAnbieterFür Partner
Follow us
Instagram
LinkedIn
Youtube
© 2025 House of Skills by skillaware. Alle Rechte vorbehalten.
DatenschutzImpressumCookies Settings
Unsere Website nutzt Cookies, um dir die Navigation zu erleichtern und die Nutzung der Seite zu analysieren. Mehr Informationen findest du in unserer Datenschutzrichtlinie.
EinstellungenAblehnenOK