This is what we offer you

• Gross monthly salary between EUR 5,162 and EUR 7,374 (scale 10) for a 36 hour week
• Thirteenth month’s salary and 8% holiday allowance
• 10% Employee Benefit Budget
• EUR 1,400 development budget per year
• Hybrid working: balance between home and office work (possible for most roles)
• A pension, for which you can set the maximum amount of your personal contribution

View all our benefits.

YOU AND YOUR JOB

New and exciting technologies are right around the corner, creating enormous possibilities for Rabobank. With the arrival of GenAI and the acceleration that is expected, the bank turns even more into a tech company. At the same time we have to be on top of the new risks these technologies introduce. As a bank we have to be permanently aware of the trust that is placed in us. That is why we have to be diligent with regard to protecting our core systems, communication channels and data. We are currently looking for you to support our IT risk department with your knowledge of and experience in risk management with a focus on IT & Security risks.
As an Technology & Innovation Risk professional within the CRO domain, you take responsibility for designing, monitoring and evaluating our IT and security risks on an ongoing basis.
Rabobank increasingly accelerates in working with start-ups and adopting new technologies like AI, data-analytics and cloud. This transformation comes with challenging (but also exciting) topics related to Information Security, Third Party, Continuity and IT Risks, since our IT-landscape is more and more connected to external parties, cloud and mobile applications.
Imagine, that together with colleagues you’ll contribute to a Rabobank that stays in control of its IT-risks, because of your strong, fact-based advice. This way you can facilitate the exciting transformation, based on your thorough, in-depth knowledge and sound experience with IT risk.
At the moment we are looking for a new colleague to join our Libraries & Reporting team, specifically with knowledge and experience of Third Party Risk Management. We would love to get in touch with professionals with a lot of experience. However, we also encourage you to apply to if you want to transfer from the audit or security officer world into ours. Especially when you have experience in IT control testing for the financial audit.

PRACTICALEXAMPLES

In your role you will:

• support and challenge the IT domain of Rabobank Group regarding IT risks in general and information security risks specifically. Specifically, you will be responsible for (supporting in) the design of the risk & control libraries that form the foundation of our day-to-day risk management: we are currently looking for enhancement on the topic of Third Party Risk Management/Outsourcing.
• guide the process and deliver on testing our internal control framework for IT General Controls as input for the financial statements as prepared by our external auditor.
• develop/safeguard a sound and balanced Operational Risk Management framework for Rabobank Group, in line with the risk appetite of the bank. This refers to the risk themes for the following disciplines (next to Third Party Risk Management):
• Information Technology risk;
• Information Security;
• Business Continuity Management;
• globally monitoring, challenging and advising (on) the risk profile of the business, the ‘first line’.
• supporting the implementation/optimizing of our risk and control framework.
• Overseeing (oversight and provide independent opinion on OpRisk topics) and facilitating (business partnering by means of advising and challenging) the risk management activities of the IT domain bank wide, both nationally and internationally.

TOP 3 RESPONSIBILITIES

• Update risks and controls, improve our risk control framework, with specific attention for Third Party Risk Management. By building strong relationships with your counterparts within the bank you are able to give your expert opinion on risk taking and risk management. In this way we are able to define an effective and efficient risk control framework, supported by our Operational Risk Management tooling. Are you up able to gain efficiencies and at the same time counter relevant risks by designing effective controls?
• Keep a close eye on the IT risks emerging around the bank. By constantly liaising with your colleagues and your stakeholders in the IT and Information Security departments you are able to have an up-to-date insight in the risks that the bank is running. Can you keep up with the constantly evolving risk landscape?
• Measure and report risk: Continuity & IT Risk will measure and report risk exposures, trends in the evolution of the risk profile of Rabobank and in the external business environment, concentrations and risk-taking outcomes, divisionally and for the group-wide risk profile, scrutinizing them against the Risk Appetite and strategic goals. Reporting is done to the IT department, Risk Management Committees as well as managing board and supervisory board. Your work will get noted!

In your role you will:

• support and challenge the IT domain of Rabobank Group regarding IT risks in general and information security risks specifically. Specifically, you will be responsible for (supporting in) the design of the risk & control libraries that form the foundation of our day-to-day risk management: we are currently looking for enhancement on the topic of Third Party Risk Management/Outsourcing.
• guide the process and deliver on testing our internal control framework for IT General Controls as input for the financial statements as prepared by our external auditor.
• develop/safeguard a sound and balanced Operational Risk Management framework for Rabobank Group, in line with the risk appetite of the bank. This refers to the risk themes for the following disciplines (next to Third Party Risk Management):
• Information Technology risk;
• Information Security;
• Business Continuity Management;
• globally monitoring, challenging and advising (on) the risk profile of the business, the ‘first line’.
• supporting the implementation/optimizing of our risk and control framework.
• Overseeing (oversight and provide independent opinion on OpRisk topics) and facilitating (business partnering by means of advising and challenging) the risk management activities of the IT domain bank wide, both nationally and internationally