Job Description:Brief Description of our Team:The Embedded Risk Team is part of the CSO organization and located within the CSO Third Party, Regulatory, Risk & External Engagement and CISO EMEA & Germany team. We are a global team located in US, UK, GER and IND. The primary objective is to drive the risk and control agenda which translates in assisting, facilitating, managing, and monitoring all aspects of information security risks. This includes internal and statutory Audit coordination, Findings Management support and Risk Reporting. The ERT is working together with all CSO divisions on a day-to-day basis.Description of Responsibility:In the role as Audit and Risk Management Specialist within CSO ERT the main objective is to manage and govern each audit request, internal from Group Audit and external from Statutory Auditor, and resulting finding in a quality assured and controlled manner.The main responsibilities are:End to end governance, monitoring and reporting of the audit management process for CSORun regular CSO internal reports on observations and evidence collectionsPrepare regular status updates for senior managementParticipate and coordinate all phase of the Audit with respective stakeholders. Act as interface with GA for fieldwork support and other coordination for all CSO divisional audits.Provide support on delivering audit requests daily, review outstanding tasks and report accordinglyCollate the evidence already supplied and provide an update on weekly basis to ERT head.Review other MI reports and tracker for status on the outstanding deliverables and report.Create lesson learned throughout the process especially on missed self-identified findings.Translate requirements if clearly not articulated or seek for help at the earliestKnow the stakeholders well for reporting and tracking purposesRisk Management support and advice to Finding Owners after audit is conducted including quality assurance of management action plans and completion checks on the deliverables.Needed Skills:Knowledge in auditing and enterprise risk management especially Information Security Risk Management (Audit engagement experience for 3-5 years)Strong communication skills to clearly passing on thoughts, ideas, and suggestions during meetings with audit to internal SMEsAnalytical skills such as ability to collect and analyze information and solve problems based on given informationWork in global teams across different time zones and within a matrix environmentAbility to monitor, track and clearly communicate progress, escalating issues when appropriatevery good communication skillsExcellent knowledge of MS Office standard applicationsDegree in computer scienceFluent in English (written/verbal)CISM / CISA certificate of advantage
Audit and Risk Management Specialist in Bucuresti
Contact
Datele de contact vor fi vizibile dupa ce veti aplica!
Anunţ expirat