Group IT and Information Risk Manager
A prominent international Corporate Services Company is looking for a Group IT and Information Risk Manager to join their Limassol office. The role of Group IT and Information Risk Manager will develop and support the Group’s Data Protection Risk Management and Assurance and Information Security Assurance. The key objectives for the post holder are to provide the Group with an appropriate level of compliance and assurance on Data and IT risk matters and to take ownership of the Group DPIA requirements for Group wide products and services. In this role you will report to the Group Director – Risk & Compliance.
Establish appropriate Information and IT risk measurement criteria in line with the Group’s risk Management framework.
Support the Group Head of Risk and Compliance in the development of pan-Group Information and IT Risk oversight and dashboards to support Group level reporting on a timely basis.
Reporting risk MI and reporting on progress, risk incidents and actions, and issues as and when required.
Delivery of the Groups Information and IT Risk Assurance requirements including the drafting of terms of reference and testing and reports. The Assurance reviews will focus primarily on IT and data security assurance.
Establish a process for the follow up actions of assurance reviews and related reporting
Work with all businesses to build local and Group wide DPIA covering the current operation and all third-party data processors used by the Group. Ensure that these are regularly reviewed.
Assist the business to create DPIAs for any new proposed external system or service.
Develop DPIA schedules and review processes.
Follow up actions from the DPIAs to confirm completion including the production of relevant reporting and MI
Relevant qualification in Data Protection, Risk Management, IT Risk Management or IT Audit
Appropriate industry qualifications
Demonstrable knowledge of risk management or assurance in the context of Information Risk and IT Risk
Project management qualification and experience is desirable
At least 5 years IT and Information Risk Management or Assurance experience including 2 years at a team leader or manager level
Excellent English skills
Self-motivated and able to work with minimal supervision
General understanding of IT assurance standards such as SOC 1, ISAE, SSAE and ISO
The salary is based on skills and experience + 13th salary + medical insurance
The working hours are 35 hours per week (Monday 9am – 5pm with 1 hour lunch break)