IT Controls Advisory (Second Line)
- Recruiter
- Audit and Risk Recruitment
- Location
- London
- Salary
- £50,000 - £70,000(depending on experience) plus be
- Posted
- 02 Dec 2022
- Closes
- 02 Jan 2023
- Ref
- 460038
- Job Type
- Information Assurance, IT Audit, IT Security, Technology Risk
- Employer Sector
- Insurance
- Contract Type
- Permanent
- Hours
- Full Time
- Travel
- None
The Audit and Risk Recruitment Company (ARRC)* has been mandated by our client, a major UK based insurance business with a global presence, has built an independent IT Governance and Risk team to support the business in providing IT assurance for all of the business' major suppliers.
Reporting into the Head of IT Risk and Controls, the role represent an exciting opportunity for an Information Security or IT Audit / Risk professional to join a newly established team looking at areas such as information security, vendor management, IT Change and operations.
Your role will be to establish relationships across a variety of different suppliers (primarily with the CIO) to mentor and coach around key risks and IT controls methodology.
The role sits across 1st and 2nd line in terms of delivery but there is ample opportunity to move into other areas of the business, and this will be actively encouraged by the leadership team.
If you are a Technology Assurance professional with a continuous track record of managing and developing stakeholders and are looking for a more business facing role, please register your interest.
Backgrounds Requirements
- The ideal candidate would have formal training and hands-on experience of designing, operating or auditing IT Controls
- Background from IT internal audit will also be considered
- Experience of IT in a regulated financial services company would be useful but is not essential
- Demonstrable experience in Information Technology audits or IT Assurance (e.g., CISSP, CISM, CISA, CRISC
- A sound understanding of British and International Security Standards (e.g., ISO/IEC 27001, ISO/IEC 27002, NIST, CIS-20, PCIDSS) and the UK regulatory environment (e.g., ICO, FCA, PRA and CQC)
- Strong interpersonal, communication and influencing skills with the confidence and ability to operate effectively at all levels including third parties and external customer
- Professional experience in carrying out IT control reviews in a 1 s, 2 nd or 3 rd line of defense position
- Ability to work under pressure maintaining tight deadlines, high concentration levels and keeping up with workflow requirements
*The Audit and Risk Recruitment Company - Experts in Audit and Risk