Experis™ is the global leader in professional resourcing and project-based workforce solutions. We accelerate organizations’ growth by intensely attracting, assessing and placing specialized expertise in IT, Finance & Accounting, Engineering and Healthcare to precisely deliver in-demand talent for mission-critical positions, enhancing the competitiveness of the organizations and people we serve.
IT Risk Analyst
Job Description
The IT Security Risk Analyst is primarily responsible for carrying out risk assessment activities for both client-facing and internal operating platforms. The objective of this is to make sure that systems are deployed accordingly to the Bank policy and standards, regulatory requirements and security best practice. Exept that, the Risk analyst will be responsible for:
- Assess the vulnerabilities and threats associated with new or operational IT platforms;
- Co-ordinate activities and input from multiple sources in order to develop an accurate andbusiness-relevant understanding of risk levels;
- Ensure up-to-date and precise reporting information on progress of assignments;
- Deliver relevant and timely risk assessments in line with approved processes;
- Provide consultancy services to assist in the development of remediation plans.
- Excellent command of spoken and writtenEnglish;
- 3 or more years experience of InformationSecurity/Risk Management experience obtained in a large corporate environmentpreferably financial services.
- Strong analytical skills;
- Good planning, organization of work andcommunication skills;
- Pro-active approach in solution finding;
- Understanding of risk assessmentprinciples;
- Ability to communicate technical riskissues effectively, to customers who may, at times, have a non-technical background,and
- Ability to work individually and as partof a team.
- Educated to degree level;
- Excellent command of spoken and writtenEnglish;
- Understanding of risk assessmentprinciples;
- Experience of one or more popular ITsecurity risk assessment methodologies;
- Ability to communicate technical riskissues effectively, to customers who may, at times, have a non-technicalbackground,
- Broad knowledge of technology generallyand Information Security technology and methodologies particularly, includingfor example, ISO/IEC 27000-series family of standards / BS7799 / web serversecurity / firewalls / networks / encryption / PKI / TCP/IP / UNIX / Windows/PCI/DSS etc.
If you are interested in this offer please send your application by clicking Apply button.
