Technology Risk and Controls Analyst - Working with a dynamic financial organisation in the heart of the city, whilst not essential any previous Financial/Banking experience would be highly beneficial. The Technology Department delivers differentiation, scalability and security for the business. Reporting to the COO, Technology provides digital tools, software services and infrastructure globally to all business groups. Software development and support teams work in agile streams' aligned to specific business areas. Our other teams work enterprise-wide to provide critical services including our global service desk, network and system infrastructure, IT operations, security, enterprise architecture and design. Technology Governance is responsible for defining Technology-wide standards, controls and reporting to ensure the Technology business is operating effectively and meeting its financial, strategic, assurance and regulatory obligations. The area covers Technology Strategy & Planning, Risk and Controls, Business Resilience, IT Service Continuity and Enterprise Architecture. Overall Responsibilities Facilitating and improving the Technology Risk Management process. Ensuring Technology controls are appropriate, facilitating reporting on Compliance to relevant internal stakeholders Facilitate and support Internal and External Audits, their execution and the tracking of reporting of remediating actions Supporting the development and embedding of underpinning process and procedure documentation, including assisting service/business/process owners with compliance to new policies and operationalising new working practices and procedures. Monitor and report on the performance of these processes across the organisation, recommending and implementing enhancements, and closing coverage gaps. Work with Operational Risk to manage and track key Technology Risks, provide support as part of Entity-wide risk reviews and control gaps. Facilitate the Technology Supplier Management process, ensuring that internal stakeholders are compliant with the framework and the status of 3rd parties is managed. Skills and Experience Essential Excellent verbal and written communication skills Understanding of SOX 404 IT General Controls Experience of working in a regulated environment and with stakeholders across Operational Risk, Audit and Compliance. Desired Experience working in a regulated environment and knowledge of the risk and compliance requirements associated with this. Practical experience of working with Quality Management Systems, ideally with ISO27001 Foundation certification or above. Risk Management - experience of facilitating the management of risks, ideally with a formal accreditation (eg ISO31000 or Management of Risk). IT Service Management - understanding of the disciplines required to design, develop, transition and operate technology services, ideally with a formal ITIL v4 certification. Practical experience of managing small project deliveries and improvement roadmaps. Experience of authoring process and procedure documentation.
08/05/2024
Full time
Technology Risk and Controls Analyst - Working with a dynamic financial organisation in the heart of the city, whilst not essential any previous Financial/Banking experience would be highly beneficial. The Technology Department delivers differentiation, scalability and security for the business. Reporting to the COO, Technology provides digital tools, software services and infrastructure globally to all business groups. Software development and support teams work in agile streams' aligned to specific business areas. Our other teams work enterprise-wide to provide critical services including our global service desk, network and system infrastructure, IT operations, security, enterprise architecture and design. Technology Governance is responsible for defining Technology-wide standards, controls and reporting to ensure the Technology business is operating effectively and meeting its financial, strategic, assurance and regulatory obligations. The area covers Technology Strategy & Planning, Risk and Controls, Business Resilience, IT Service Continuity and Enterprise Architecture. Overall Responsibilities Facilitating and improving the Technology Risk Management process. Ensuring Technology controls are appropriate, facilitating reporting on Compliance to relevant internal stakeholders Facilitate and support Internal and External Audits, their execution and the tracking of reporting of remediating actions Supporting the development and embedding of underpinning process and procedure documentation, including assisting service/business/process owners with compliance to new policies and operationalising new working practices and procedures. Monitor and report on the performance of these processes across the organisation, recommending and implementing enhancements, and closing coverage gaps. Work with Operational Risk to manage and track key Technology Risks, provide support as part of Entity-wide risk reviews and control gaps. Facilitate the Technology Supplier Management process, ensuring that internal stakeholders are compliant with the framework and the status of 3rd parties is managed. Skills and Experience Essential Excellent verbal and written communication skills Understanding of SOX 404 IT General Controls Experience of working in a regulated environment and with stakeholders across Operational Risk, Audit and Compliance. Desired Experience working in a regulated environment and knowledge of the risk and compliance requirements associated with this. Practical experience of working with Quality Management Systems, ideally with ISO27001 Foundation certification or above. Risk Management - experience of facilitating the management of risks, ideally with a formal accreditation (eg ISO31000 or Management of Risk). IT Service Management - understanding of the disciplines required to design, develop, transition and operate technology services, ideally with a formal ITIL v4 certification. Practical experience of managing small project deliveries and improvement roadmaps. Experience of authoring process and procedure documentation.
An Arts Organisation in Central London are seeking a Cyber Security Team Lead. Reporting into the Head of Technology, you will work to ensure that any potential threats and issues are dealt with effectively and manage a junior Cyber Security Analyst. The role is hybrid. As our Cyber Security Team Leader you will: Analyse technical solutions to help protect against and mitigate security vulnerabilities. Design, maintain and test recovery procedures for all critical systems. Implement and oversee the monitoring of on-premise and cloud-based computer systems, networks and applications. Develop and deliver a programme of planned independent security assessments. including penetration tests, hardware & software compliance, and PCI, and ensure any gaps are addressed. Work with external stakeholders and information security groups including DCMS, NCSC and accreditor organisations and others to improve cyber security standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure and ISO27001 annual accreditation processes. We are looking for: Understanding of: Windows, client & server IAAS, PAAS especially Azure Firewalls Networking & Wi-Fi End-point protection Web-hosting technology Demonstrable understanding of ISO27001, Cyber Essentials, data protection, business continuity and audit compliance Mobile phone security: IOS and Android Excellent interpersonal (Builds relationships) Team player who embraces change Positive communicator Strong influencing and negotiating skills Strategic (Planning for the future) Architectural - Translates business requirements into technical initiatives. Delivery (Results driven) Analytical thinker Achievement focus Teamwork and team leadership Confident communicator of technical ideas and information (written and oral) Highly organised and task driven, able to prioritise and communicate activities
08/05/2024
Full time
An Arts Organisation in Central London are seeking a Cyber Security Team Lead. Reporting into the Head of Technology, you will work to ensure that any potential threats and issues are dealt with effectively and manage a junior Cyber Security Analyst. The role is hybrid. As our Cyber Security Team Leader you will: Analyse technical solutions to help protect against and mitigate security vulnerabilities. Design, maintain and test recovery procedures for all critical systems. Implement and oversee the monitoring of on-premise and cloud-based computer systems, networks and applications. Develop and deliver a programme of planned independent security assessments. including penetration tests, hardware & software compliance, and PCI, and ensure any gaps are addressed. Work with external stakeholders and information security groups including DCMS, NCSC and accreditor organisations and others to improve cyber security standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure and ISO27001 annual accreditation processes. We are looking for: Understanding of: Windows, client & server IAAS, PAAS especially Azure Firewalls Networking & Wi-Fi End-point protection Web-hosting technology Demonstrable understanding of ISO27001, Cyber Essentials, data protection, business continuity and audit compliance Mobile phone security: IOS and Android Excellent interpersonal (Builds relationships) Team player who embraces change Positive communicator Strong influencing and negotiating skills Strategic (Planning for the future) Architectural - Translates business requirements into technical initiatives. Delivery (Results driven) Analytical thinker Achievement focus Teamwork and team leadership Confident communicator of technical ideas and information (written and oral) Highly organised and task driven, able to prioritise and communicate activities
Our client is seeking a dedicated Information Security Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of information security protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation/re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the information security of a fast growing business
07/05/2024
Full time
Our client is seeking a dedicated Information Security Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of information security protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation/re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the information security of a fast growing business
Business Analyst (KYC) - Brussels - French or Dutch speaking One of our Blue Chip Clients is urgently looking for a Business Analyst (KYC). Please find some details below: Responsible for elicitation, analysis and documentation of business, stakeholder, solution and transition requirements. Works closely with product owners, architects and other subject matter experts to understand business and technology strategies, develop domain knowledge, identify high-level requirements, and to foster reuse and continuity of that knowledge across all projects enabling the program. Analyze and design new business processes. Identify and define detailed product requirements and use cases. Work with the project manager, architects, and other team members to define metrics and performance goals for the application. Participate in transitioning the requirements and use cases to the designers, and ensure a clear and complete understanding of the requirements Assist in translating requirements and use cases into test conditions and expected results for product, performance, and user acceptance testing. Actively manages requirements traceability for impact and coverage analysis. Participate in quality management reviews, in particular reviews of the designs, prototypes, and other requirements work products to ensure they fulfil the requirements. Plans and actively executes the BA requirements management strategy; communicating, driving and managing the business analysis effort through all phases of the project life cycle. Partners with internal and external development and technology delivery organizations; prioritizing their dependencies on the BA to ensure successful delivery of solutions. Serve as a liaison to the business community. KNOWLEDGE Experience with conceptual modelling techniques and methods Good expertise in MS Office Good understanding of IT and testing Experience with requirements management At least 5 years of relevant experience Fluent in English and French or Dutch Good understanding of work flow processes Experience as business analyst experience in data related projects (data analysis, data mapping) Experience in KYC Domain is a plus Please send CV for full details and immediate interviews. We are a preferred supplier to the client.
01/05/2024
Project-based
Business Analyst (KYC) - Brussels - French or Dutch speaking One of our Blue Chip Clients is urgently looking for a Business Analyst (KYC). Please find some details below: Responsible for elicitation, analysis and documentation of business, stakeholder, solution and transition requirements. Works closely with product owners, architects and other subject matter experts to understand business and technology strategies, develop domain knowledge, identify high-level requirements, and to foster reuse and continuity of that knowledge across all projects enabling the program. Analyze and design new business processes. Identify and define detailed product requirements and use cases. Work with the project manager, architects, and other team members to define metrics and performance goals for the application. Participate in transitioning the requirements and use cases to the designers, and ensure a clear and complete understanding of the requirements Assist in translating requirements and use cases into test conditions and expected results for product, performance, and user acceptance testing. Actively manages requirements traceability for impact and coverage analysis. Participate in quality management reviews, in particular reviews of the designs, prototypes, and other requirements work products to ensure they fulfil the requirements. Plans and actively executes the BA requirements management strategy; communicating, driving and managing the business analysis effort through all phases of the project life cycle. Partners with internal and external development and technology delivery organizations; prioritizing their dependencies on the BA to ensure successful delivery of solutions. Serve as a liaison to the business community. KNOWLEDGE Experience with conceptual modelling techniques and methods Good expertise in MS Office Good understanding of IT and testing Experience with requirements management At least 5 years of relevant experience Fluent in English and French or Dutch Good understanding of work flow processes Experience as business analyst experience in data related projects (data analysis, data mapping) Experience in KYC Domain is a plus Please send CV for full details and immediate interviews. We are a preferred supplier to the client.