大手証券会社でのSenior IT Risk and Control Supportの求人

IT Risk and Control delivers the overall technology governance and control framework to support technology operations. Objectives of the team are to:
・Define the overall System Risk Management Framework, and associated controls.
・Define and implement appropriate governance to ensure compliance to the System Risk Management Framework, and that the control framework / controls are robust.
・Maintain and monitor the Regional and Global Technology Control Environment for adherence to the Governance Framework.
・Facilitate the design and operation of appropriate controls to allow Technology to operate efficiently and effectively while ensuring requirements of Technology Management, Internal and External Audit, Regulatory Bodies, Compliance, Legal and Risk controls are met.
・Monitor and assist with remediation where controls are to be strengthened.
・Advise Technology management and staff on Governance, Risk, and Control best practices.
・Oversee the annual IT-portion of the SOX Audit (Japan has the heaviest involvement)
・Direct responses to the IT-portion of regulatory inquiries and inspections.
・Assist with Internal Audit reviews / audits.

●Responsibilities:
・Responsible for the IT Risk & Control operations within the GTO Division of our company, which also includes global oversight of the controls operating globally
・Support global IT policies & standards buildout and reviews, and monitor compliance of IT operations.
・Coordinate internal and external audit / inspections, and technology related regulatory assessments.
・Perform IT risk assessment to identify potential risks and develop mitigating controls.
・Monitor technology projects for adherence to governance policies and processes.
・Support other IT Risk and Control initiatives like Disaster Recovery Testing, Vendor Management, Management Reporting in accordance with mutual discussion and agreement with line manager.
・Assist with writing IT Policies, Procedures, Standards, and Process Documents
・Proactively review existing processes and procedures and make proposals for improvement.
・Improve overall IT Risk & Control awareness among IT staff
・Assist with collating updates and metrics for the Governance Forums, both Global and Regional
・Develop technology MIS reporting (e.g. KRI, operational KPI, Control Dashboard)

●Mandatory
・Graduate Degree, Information Technology degree or relevant qualification.
・Minimum 5 years of relevant IT Risk & Control experience within Investment Banking or Consulting firm or related environment in supporting IT Governance, IT General Control, IT Security, Audit or Technology compliance framework. (Preferred)
・Experience in design and supporting IT Governance, IT General Control, IT Security, Audit or Technology compliance framework.
・Experience in Technology Incident, Problem, Release and Change Management process preferably using ITIL model.
・Experience in Technolgy Risk Assessment and third party vendor assessment.
・Spoken & written Japanese with business level English (communication with international regions will be in English).
・Able to think laterally and take a pragmatic approach, when necessary, to issue resolution.
・Good communication skills and experience in liaising across multiple business and technology groups.
・Organized, able to evaluate and manage priorities, able to handle an ever-changing environment.
・Proactive and strong sense of ownership to see tasks through completion
・Experience working as a part of or with global teams
・Experience in leading stakeholder meetings
・Excel (Macro), Power Point, Power BI, GRC tools, ServiceNow

●Preferred
・CISA, CISM, CRISC, CISSP, or other IT governance, risk, or audit or security professional qualification.
・Experience in external statuary audit and regulatory assessment facilitation including inspections
・Experience in Agile SDLC and Cloud Governance
・Understanding of Investment Banking and Global Markets technology front to back operations