IT Risk & Control Advisor
Posted on May 4, 2021 by Base 3
Qualifications, professional skills and experience
University degree or equivalent experience (education in computer science or engineering is a plus)
Field experience in the IT risk and control environment or equivalent experience and critical mindset and ability to challenge and influence middle management and IT experts
A good understanding of ServiceNow GRC is a strong asset
Process-minded and good knowledge of the key principles of the IT related frameworks such as COBIT2019, ITIL and PRINCE2 is a plus (no certification is required)
Fluent knowledge of English (verbal, writing, presentation). French and/or Dutch is a plus
Experience in large multi-platform-based IT environments, such as IBM Mainframe and distributed systems
This role is focusing on IT general controls, covering the main Technology areas including IT operations, project delivery, governance, strategy and other key domains.
The company's IT control framework is based on COBIT as industry best practice and is being implemented in the ServiceNow GRC platform through the IT Risk & Control programme.
- take an active role both in the programme (change) and in managing the control framework as it is gradually moved to live operation (run).
- contribute to design, co-create and roll out effective controls addressing key risks and regulatory requirements across all IT domains, advising and challenging control owners. By promoting and implementing controls you will help to improve the risk culture and control maturity in IT.
- work closely with IT process owners, management across IT divisions and locations, as well as second and third lines of defence (Risk Management and Internal Audit).