Recruiter

Carlisle Managed Solutions..

Salary

From £36,000 to £44,000 per year + Bonus, Pension, 28 Days Holiday

Location

Bristol

Job term

Permanent

Job hours

Full time

An IT Risk, Security & Governance Analyst is required by a market leading financial services organisation in Bristol. The successful candidate will ensure a proactive and professional monitoring, reporting and testing service to operational managers. To ensure this service is in support of management aims in understanding and effectively managing governance, security & risk responsibilities.

Responsibiities:

- Ensure that Suppliers manage all operational risks effectively by working closely with IT Suppliers and Operational Managers.
- Ensure that Suppliers manage the risk management system (ERA), and this is kept up to date and reflects the operational risk profile of Information Technology and Programmes (IT&P) and that all significant events are recorded accurately on ERA in sufficient detail to understand the root cause in terms of control failure.
- Monitor the supplier management of mitigating actions and their progress investigating and reporting trends to the management team as appropriate.
- Support the suppliers in internal and external audits by ensuring that resulting actions are completed on schedule and can be appropriately evidenced.
- Assist the suppliers in the testing and oversight of application controls and actively contribute to the on-going improvement and maintenance of relationships with and between all parties.
- Take responsibility for ensuring governance reporting obligations are met.
- Ensure suppliers manage all IT security aspects which are relevant to effectively conform to company guidelines.


Experience, Skills and Qualifications

- Process analysis and control design.
- Good supplier management.
- Excellent time management skills, including the ability to manage a demanding and variable workload with tight deadlines.
- Computer literate with experience of Excel, Word, PowerPoint etc.
- Good knowledge of risk management principles and practices affecting the IT environment.
- IT audit policies and practices.
- Practical knowledge and experience of control frameworks (such as COBIT), their relationship to other frameworks (ITIL, CMMI etc.) and their application within a Financial Services environment to assist in the management of IT risks and the establishment of a structured control environment.
- Good knowledge of IT security policies, procedures and best practice (e.g. ISO27000).
- Good understanding of project and service management disciplines and associated risks.

Working towards or hold one/ some of the following:

- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- Certificate Information Security Management (CISM)
- Microsoft Certified Systems Engineer (MCSE)

Benefits
- Annual performance related pay review and bonus.
- Defined contribution pension scheme.
- 28 days holiday per annum + bank holidays.
- Income Protection.
- Employee Discounts Scheme.


it risk security governance manager itil cobit cissp ceh cism mcse bristol permanent