The purpose of this role is to develop, deliver and administer a comprehensive IT risk and security program assuring compliance, statutory and regulatory requirements and standards regarding information access, security and privacy. The role holder will work closely with the Head of IT and will be responsible for the following activities:
Key Responsibilities include:
- IT Risk and Security Governance
- Information Classification and Governance
- IT Governance and Controls Documentation – Policies, Standards, Processes and Procedures
- IT Audit and Compliance Co-ordination
- Business Continuity and Disaster Recovery
Responsibilities of the IT Compliance Specialist:
- Advising on the IT Functional areas development of governance documentation such as policies, standards, procedures and training.
- Develop a training plan aligned to the IT Governance Program for all IT Functional Areas, based on the defined Skills Matrix.
- IT implementation and management of Risk Incident Reporting
- Work with the business to establish an information management and protection framework for an effective Information Governance and General Data Protection program
- Develop, implement and maintain the policies, systems, and procedures for the management of recorded information throughout its life cycle.
- Recognise and identify potential areas where existing policies, standards and procedures require change.
- Support additional internal and external compliance activity as part of the Information Security and Governance team
- Liaise with internal and external auditors and risk management bodies, and reviewing and reporting on open issues both prior to and subsequent to issuance.
- Review and develop internal IT Audit Plans.
- Assist with control testing for the IT Function.
- Conducting internal assessments of IT Policies, Standards and Process compliance to IT Audit standards
- Manage the annual review process of company and business continuity and disaster policies and procedures recovery plans
- Monitors, coordinates IT compliance activities taking appropriate steps to improve effectiveness and identify trends.
- Monitoring and remediation of Internal and External Audit Findings
Requirements of the IT Compliance Specialist:
- A Bachelor’s Degree in a related area such as; Computer Science or Information Technology.
- A minimum of 4 years’ experience working in an IT environment with exposure to compliance, risk management or internal audit in an entity regulated by the Central Bank of Ireland.
- Experience in compliance frameworks for Information Security, Compliance & IT Governance Standards: ISO2700X, COBIT and ITIL.
- Strong risk assessment/audit capabilities with professional certifications an advantage (CISA, CISM, etc)
- Experience in a variety of technologies within the financial services industry.
- Strong people person skilled at managing across the organisation to deliver results
- Strong report writing skills with experience of presenting top quality reports.