control frameworks (e.g., NIST, ISO 27001, COBIT). Deep understanding of IT general controls, cyber security principles, and technology risk domains. Experience in control ownership, control testing, and remediation planning. Familiarity with GRC platforms and control lifecycle management. Experience in a risk management, IT audit, or cyber security role within a financial services or regulated environment. Excellent communication More ❯
stakeholders to develop and implement data standards for EMEA Data. Participate in data governance forums to enhance the Bank-wide governance framework. Investigate Data Quality Issues and develop remediation plans. Maintain consistent communication with teams to report progress, risks, and issues. Knowledge, Skills, Experience & Qualifications: Essential: Strong knowledge of Transactional Data types and Bank Products. Expertise in data More ❯
Financial Controls, Legal & Compliance and other internal departments to ensure a mutual understanding of Primark risk and control posture and ensure alignment on short-term and long-term remediation activities. Provide leadership, guidance, and oversight to the development of an enterprise-wide Technology Risk Management program to assess, identify, report, manage, and prioritize organizational risks. Develop risk mitigation … Leadership Team and other senior management on the effectiveness of GRC, including key risks and compliance with policy and controls, escalating issues as appropriate. Oversee the definition of remediation plans, compensating and mitigating control activities and annual controls testing cycles. Ensure any recommendations received from internal audit, external audit, regulators, or other external parties are addressed and incorporated … into those plans. Ensure timely remediation of ineffective controls and that remediation plans addressing risks, are appropriate, detailed, and up to date. Oversee risk reporting, risk registry, and executive metrics. Provide leadership, guidance, and oversight to risk reporting activities, ensuring accurate and timely reporting of technology risks to senior management. What You'll Bring Here at More ❯
