Specialist in IT Risk Management

Tasks/Responsibilities

The IT Risk Management Specialist will be responsible for bringing IT expertise to the heart of a generalist GRO (Organizational Risk Management) team of approximately 15 people, while contributing to the company’s cybersecurity.

MORE PRECISELY

• Be in charge of the governance of information technology (IT) security risks
• Identify, evaluate, and manage risks associated with the company’s IT projects
• Perform 2LOD monitoring (2nd line of defense) to ensure compliance of 1st line controls
• Establish visibility on the various security programs, development projects, and other initiatives
• Carry out internal audits and compliance reports
• Work in an environment on Azure DevOps, Threadfix, Sonarqube, Burb, Acunetix, CheckMarx

PROFILE

• 5+ years of experience in Organizational Risk Management (ORM)
• Professional experience in governance and policies, and knowledge of IT
• Knowledge of cybersecurity (professional experience in IT security being a strong asset)
• Comfortable with 2LOD monitoring activities and compliance reporting
• Experience in the financial/banking field (strong asset)
• BAC in computer science or equivalent
• Bilingualism required (French and English)