IT Risk Engineer

Job Overview

You will help on risk subjects like: Act as a central SPOC for all incoming IT risk assessments and control evidencing requirements adhering to the established control framework, SOX requirements, and industry best practices. Monitor, track, and manage deviations to established IT risk controls. Mediate between 1st LOD/2nd LOD and DevOps teams. Conduct walkthroughs with auditors to review and validate IT risk control processes. Lead technical due diligence sessions with third-party vendors. Work in an agile environment, following Scrum methodology together with DevOps squads, helping to maintain a safe and secure application.

Key Responsibilities

Your primary mission is to help the squads implement IT Controls and to prove the controls are implemented effectively: ensure we are in control of our risk appetite, define and document adequate risk processes, and collect the evidences. Make sure that the different risk parties agree with the evide...