Risk & Compliance Manager
5+ years of experience in risk management (Enterprise, Operational, IT, OT) or consulting on risk management type engagements. ‘Big Four’ experience and training preferred in relation to IT risk assurance.
- Good attention to detail and strong documentation skills
- Ability to manage several projects simultaneously
- Ability to prioritise conflicting demands and work well under pressure
- SOx 404 (ITGC) experience
- Compliance readiness assessments
Competencies:
- University graduate in the areas of Computer Science/Information Management Systems/Cyber Security/similar area
- SAP experience preferred
- Program development experience required
- At least one of the following: CISA/CISSP/CRISC/CISM/CGEIT qualification
- Strong IT skillset
- Strong knowledge of IT, OT and risk related frameworks and standards (e.g. COSO, COBIT, ITIL V3, ISO 27001,ISO 27017, NIST, ISO 27005, ISO 31000, SOC2, Trust Principals)
- Ability to weigh business risk and enforce appropriate IT controls
- Ability to understand technical requirements and functionality
- Energy, passion and a desire to learn
- Strong written and verbal communication skills
- Excellent interpersonal skills
- Attend conferences and user groups; belongs to professional organisations.
- Fluent English speaker