Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.

Information Analyst - Risk Management

Eingestellt von Manaco International

Gesuchte Skills: Support, Design

Projektbeschreibung

FUNCTION DESCRIPTION:

Enterprise Services is a newly formed organisation within Global Functions, offering a set of common services that are delivered across IT. Having successfully mobilised, services will now be expanded and additional services added to bring further value to the businesses at a reduced cost. Within Enterprise Services, Information Risk Management (IRM) Compliance and Incidents (C&I) team provides strong ties between Information Risk Management (IRM) and IT teams to advance IRM capabilities, assess and mitigate risks, and promote efficiency and quality from standard IRM processes and data management. The IRM C&I team has recently launched the Project Engagement Service to assure that delivered projects are compliant with policies, standards and regulatory requirements. The purpose of this role is to participate in project delivery, working closely with the IRM Risk and Controls Analyst, the Project Manager and the Delivery teams to deliver cost effective IT solutions that are affordable, credible and compliant.

- Validate the control selection provided by IRM Risk Controls.
- Liaise with the relevant support organisations to determine and confirm support procedures to be used.
- Leverage where possible use of Enterprise wide support procedures and controls as defined by IT Delivery Model.
- Design fit for purpose Control Procedures together with the relevant control operator community.
- Document Control Procedures in Collective, ensuring the correct status is used (eg In Design, Active, Retired).
- Set up document repositories to capture evidence.
- Schedule and co-ordinate Design Effectiveness and Operating Effectiveness testing of Controls, including any QA that may be required.

Advise and co-ordinate remediation activities:

- Assess the impact
- Determine root causes
- Develop and drive implementation of robust remediation actions
- Assess residual risks, ensure appropriate acceptance
- Co-ordinate retest of controls
- Provide training where required.
- Evaluate existing controls and recommend improvements to increase efficiency of control operation via automation or standardization, without reducing assurance levels.
- These types of engagements require a high degree of collaboration and communication across various levels and departments within the Shell IT Ecosystem, hence a pro-active, good communicator, solution-minded person and excellent team-player is required.
- Candidate should be a self-starter, and deliver results without needing to be coached or mentored.
- Many (standardisation) initiatives have been initiated within Shell IT. The consultant should be curious and look beyond the engagement to determine best solution for implementing controls that fits with overall client strategy.

FUNCTIE EISEN

Skills - must haves

- Graduate qualification in Information Technology, Computer Science or a related discipline.
- Possess a valid security certification, either CISSP (ISC)2 or GIAC (SANS).
- Possess an audit certificate CISA (ISACA) or RE (NL).
- ITIL certified.
- Expert user of the Microsoft Office Toolset (Word, Excel, Powerpoint, Ms-Access, VBA).
- Minimum of 5 years experience in IT delivery.
- Minimum of 5 years in IT Audit or Controls Testing.
- Thorough knowledge of control frameworks (COBiT, ISO 270002, etc) and how they are to be applied.
- Project Management Experience preferred.

Required languages for this role

- English
- Dutch

Projektdetails

  • Einsatzort:

    Rijswijk, Niederlande

  • Projektbeginn:

    asap

  • Projektdauer:

    Until 29.05.2015

  • Vertragsart:

    Contract

  • Berufserfahrung:

    Keine Angabe

Geforderte Qualifikationen

Manaco International