IT Governance & Risk Manager

at  Lombard International

ABOUT LOMBARD INTERNATIONAL GROUP

Lombard International Group (‘the Group’) is the leading European provider of cross-border wealth, estate and succession planning solutions, based on Luxembourg unit-linked life insurance. Our 30+ years’ experience combined with our award-winning solutions and services are highly sought after and valued by our clients and their advisers. What truly matters to them is being able to protect, preserve, and pass on their wealth for future generations.
With our presence in 7 countries, the Group has an internationally diversified footprint serving over 15 markets across Europe. Our dynamic international team of 450+ experienced wealth structuring specialists, subject-matter and technical experts consists of 50 different nationalities, speaking over 30 languages.
We are a proud multicultural, diverse, and inclusive Group, driven by a values-based culture of performance, ambition and curiosity, where innovation is not just supported but actively encouraged. We invest in talented teams who develop their expertise, curated through support and training, and fostered through a people centred culture. Our people truly are our greatest asset!
Lombard International Group operates through two divisions:

WE OFFER YOU

Sitting at the crossroads of private banking, asset management and insurance, we operate in a well-established and fast-growing segment of the financial services industry. We offer a thriving and entrepreneurial work environment, with the opportunity to work across multiple geographies, learn valuable new skills, develop great expertise, and establish long-lasting relationships. It is an exciting opportunity to build a network of contacts across the organisation in a collaborative and diverse workplace. At Lombard International Group we have a diverse team of over 50 nationalities. We are always looking for exceptional talent to join our team. Because our people are our greatest assets, you will enjoy reward and recognition packages. We also offer you the possibility to shape your professional career in line with your own goals and the opportunity to work with the top talent in the industry. We are committed to extending equal employment opportunities to all individuals.
Be a part of our community!
Lombard International Groups an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to gender, colour, religion, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Given the sensitive nature of our business, industry sector and the role as described, the selected candidate is required to provide a criminal record (Bulletin n°3 for Luxembourgish residents). This excerpt will be kept by Lombard International Assurance S.A. in compliance with article 8-5 (2) of the law of 23 July 2016 and for no longer than one month from the conclusion of the employment contract; otherwise it will be destroyed without any undue delay should the candidate not be hired.
Should you be interested in pursuing this opportunity, please send your application in full confidence to Lombard International Assurance S.A, https://www.lombardinternational.com/en-US/Careers/Job-Board
Lombard International Assurance is aware of its obligations under the General Data Protection Regulation (GDPR) and is committed to processing your data securely and transparently.
Our Recruitment privacy notice is in line with GDPR and provides more information with regards to the types of data that we collect and hold on you as a job applicant, including for the performance of Background Checks. It also sets out how we use that information, how long we keep it for and other relevant information about your data. For full details please click here Recruitment Privacy Statemen

The IT Governance and Risk Manager plays a critical role in advancing our IT department. This position is pivotal in defining, implementing, and maintaining robust IT governance frameworks and controls, especially during significant application updates. The role involves facilitating the development, implementation, documentation, and review of IT policies, procedures, processes, programs, and practices to ensure operational efficiency and continuous compliance with organizational and industry laws, regulations, and frameworks.
The IT Governance and Risk Manager serves as a key representative for IT governance, working across all organizational functions to ensure comprehensive control over areas such as policies and procedures, application security, identity and access management, and data protection. This position is a vital member of the IT Executive team and collaborates closely with the IT Director, other IT Executive team members, and IT team leaders.
Your responsibilities will be as follows:

1. Policy Management:

• Develop, improve, and maintain a comprehensive IT policy library that aligns IT procedures, guidelines, and standards with approved company policies.Ensure that policies are regularly updated to reflect changes in technology, business processes, and regulations.

1. Standard Operating Procedures (SOPs):

• Manage and disseminate documentation of standard operating procedures for IT, ensuring alignment with best practices and organizational objectives.Collaborate with various IT teams to ensure SOPs are practical, relevant, and adhered to.

1. Application and Asset Management:

• Enhance and maintain the application inventory system as the authoritative source of record for approved business applications.

• Define and govern application ownership and assign application-specific responsibilities using tools such as a RACI matrix.Redefine the asset classification structure and establish procedures for asset and license inventory management. Coordinate with relevant teams for execution.

1. Audit and Compliance:

• Lead coordination with internal and external audits, supporting testing, walkthroughs, and process reviews for audit, risk, and compliance initiatives.Centralize IT internal and external audit requests, ensuring timely delivery of expected deliverables.

1. Risk Management:

• Manage the IT risk registry, ensuring that risks are identified, documented, and mitigated effectively.Lead investigations into internal issues/events, coordinate risk mitigation efforts, and provide compliance recommendations.

1. Data Privacy and Protection:

• Oversee the IT-specific application of the company’s data privacy program, ensuring compliance with applicable laws and regulations.Provide situational awareness and guidance to relevant stakeholders and committees regarding data protection and privacy matters.

1. Performance and KPI Management:

• Collaborate with team leaders to define KPIs, track progress on defined objectives, and initiate interventions when necessary.Prepare regular reports for senior management on IT governance, risk, and compliance status.

1. Stakeholder Engagement:

• Engage with various stakeholders, including senior leaders and executives, to build consensus and drive change.Clearly communicate risk and compliance issues in a manner that is understandable and actionable for business and technical audiences.