Cyber Security Risk and Control Analyst

An immediate opportunity has arisen for an experienced Cyber Security Risk and Control Analyst to join our client, a financial services company based in London

Key responsibilities of the Cyber Security Risk and Control Analyst will include:
-Enhance the technology risk & control environment.
-Embed a transparent risk culture across technology and enhance risk & control capabilities and awareness.
-Provide a holistic view of the technology risk & control environment.
-Provide assurance over policy, regulatory and legal obligations for technology.
-Provide assurance over technology control remediation programmes and broader technology controls issues management.
-Support the design and implementation of improved, sustainable, automated technology controls.
-Primary role is to act as the conduit through which Regulatory requirements in respect of Technology services provision are made known to interested parties across Technology Risk and Operationsworking to ensure standard content is aligned to the Policy and Control Objectives Inventory.

The ideal Cyber Security Risk and Control Analyst will possess the following attributes/skills:
-Understanding of risks and controls within a Technology environment
-Ability to assess, quantify, and effectively communicate risks
-Risk assessment and implementation of remediation in both the application and infrastructure disciplines
-Awareness of relevant industry Regulators and experience in dealing with Regulatory requests
-Relationship building/maintenance across Technology teams
-Ability to recognise and communicate appropriate remediation effort in respect of both IT procedures and practices
-Financial Institution technology experience beneficial.
-Ability to assess, quantify, effectively communicate and gain buy-in to risk management by Technology teams.
-A good understanding of risks mitigation techniques within a Technology environment,
-Good relationship building/maintenance skills across all levels of Technology teams
-Good negotiation skills and demonstrable experience using these skills with key Risk partners (Regulatory bodies, Internal Audit, External Audit, ORM, IRM etc)
-Good understanding of relevant and up-to-date technical knowledge, applications and techniques.
-Good knowledge of key issues regarding IT Security and Information Risk Management (Record Retention, Data Privacy).
-Understands and ensures compliance to principles of governance, risk management and controls in business unit.
-Supports the implementation of the risk & control framework throughout Technology.
-Fosters an atmosphere of compliance, ensures regulations are observed, and escalates problems.
-Maintains an understanding of business strategic goals as well as knowledge of the financial services industry and best practices of leading technology organisations.
-Maintains an understanding of Group Technology wide objectives, interactions, issues and risks.
-Links an understanding of customer's long term needs and strategies with current initiatives
-Works collaboratively with external stakeholders and Technology Risk.
-Team player
-Strong communicator
-Relationship management/negotiation - good influencing skills
-Confident
-Strong delivery focus
-Self-starter
-Degree or qualified by appropriate experience
-Relevant professional qualification (CISSP, ITIL, CISA preferred)

If you have similar Cyber Security Risk and Control Analyst experience to that outlined above and are looking for a temporary opportunity within a progressive and dynamic environment, please forward your CV today.

Randstad Financial & Professional encourage applications from individuals of all ages & backgrounds. Appointment will be made on merit alone but candidates must be able to demonstrate their ability to work in the UK. Randstad Financial & Professional acts as an employment agency for permanent recruitment & an employment business for temporary recruitment as defined by the Conduct of Employment Agencies & Employment Business Regulations 2003