The Tribe Reliability, IT Risk & Security (RIRS) is part of the Finance & Risk domain and is responsible for the day-to-day support of management and the DevOps teams from an operational perspective, enabling Finance & Risk to implement and run the Global CISO and Global Site Reliability Engineering (SRE) & Resilience practices accordingly.
The team
As a 1st LoD IT Risk Governance Risk and Control (GRC) function, you will be joining the IT R&S Expert team. This team of 7 experts is part of the RIRS and, in collaboration with Global CISO, 2nd line of defence (IRM) and the F&R DevOps teams, identifies, and mitigates IT risk and security threats through data analyses in systems of record, refining solution paths, gathering global tooling requirements, and participating in process control standards development.
Roles and responsibilities
The 1st LoD IT Risk Governance Risk and Control (GRC) function will focus on writing the F&R qualitative IT Risk Opinion Report, interacting with the 2nd Line of Defense (LoD) and Subject Matter Experts (SMEs), overseeing the overall process, and effectively communicating findings to local management teams (MT) and IT leads. Together with your fellow Risk & Security experts you are dedicated to supporting the F&R organisation in effectively managing IT risks, ensuring a structured, risk- and threat based approach.
In this role you;
prepare the 1st LoD IT Risk Opinion Report, ensuring it is comprehensive, accurate, and timely.
gather and analyze data from various sources to support the report’s findings and recommendations.
collaborate with the 2nd LoD to ensure alignment on IT risk frameworks, policies, and standards.
engage with SMEs to gather detailed insights and validate information for the report.
present the IT Risk Opinion Report to local MT and IT leads, effectively communicating key findings and recommendations.
How to succeed
We hire smart people like you for your potential. Our biggest expectation is that you’ll stay curious. Keep learning. Take on responsibility. In return, we’ll back you to develop into an even more awesome version of yourself.
Bachelor’s degree in Information Technology, Cybersecurity, Risk Management, or a related field.
Experience in IT risk management, governance, and compliance.
Understanding of IT risk frameworks, policies, and control standards.
Proficiency in data analysis and risk assessment methodologies.
Ability to analyze complex data and draw meaningful conclusions.
Excellent written and verbal communication skills.
Ability to present complex information in a clear and engaging manner.

Please refer the Job description for details