- International Multiregulated fintech group with more than 22 years operations
- remote opportunity with potential for growth it ICT Risk officer
- new projects and challenging plans for further business growth
Our client a leading multiregulated and multi asset brokerage firm with more than 20 years operations is looking to hire an ICT Risk Lead to take over their business IT risk management.
As ICT Risk Lead you will be responsible for identifying, assessing, and managing information and communication technology (ICT) risks within the business. You will work closely with the Operational Risk Manager, Head of Risk, IT teams, and business stakeholders to implement effective ICT risk controls, business continuity measures, and resilience strategies.
Duties and responsibilities:
- ICT Risk Management & Oversight
- Develop and maintain an ICT risk management framework aligned with applicable regulations.
- Conduct regular ICT risk assessments, identifying cybersecurity, system failure, third-party, and operational risks affecting our IT systems.
- Assist relevant internal teams to define, document and implement ICT risk mitigating scenarios, ensuring satisfactory business continuity and resilience of IT systems.
- Maintain and report on the firm’s ICT risk profile, ensuring clear risk ownership and mitigation plans.
- ICT Control Framework & Resilience Planning
- Design and oversee key ICT risk controls, ensuring data integrity, access control, network security, and fraud prevention measures are in place.
- Support business continuity and disaster recovery planning for ICT-related disruptions.
- Oversee incident response simulations and resilience testing in coordination with IT and security teams.
- ICT Incident & Threat Monitoring
- Establish and manage a process for ICT incident detection, response, and resolution, ensuring lessons learned are integrated into risk management practices.
- Track and analyze ICT security incidents, system failures, and cyber threats that could impact business operations.
- Provide timely risk reporting to senior management, escalating major ICT incidents as needed.
- Third-Party & Outsourcing Risk Management
- Assess and monitor ICT risks associated with outsourced service providers, including cloud platforms, trading infrastructure vendors, and technology partners.
- Define third-party risk assessment criteria, ensuring compliance with applicable outsourcing requirements.
- Governance, Training, & Awareness
- Provide ICT risk expertise to senior management, supporting strategic risk decisions.
- Conduct risk awareness training for business and IT teams on key ICT risks.
Candidate requirements:
1. Experience & Knowledge
- 3+ years of experience in ICT risk management, cybersecurity, or operational risk, preferably in a securities brokerage, banking, or other regulated financial firm.
- Strong knowledge of ICT risk frameworks, including ISO 27001, NIST, COBIT, or ITIL.
- Familiarity with EU DORA requirements for ICT risk management, incident reporting, resilience testing, and third-party oversight.
- Experience with cyber risk assessment, business continuity, and IT controls for trading and financial transaction processing environments.
2. Skills & Competencies
- Strong analytical and risk assessment skills, with the ability to evaluate complex ICT risks in a financial context.
- Excellent stakeholder management, capable of working across risk, compliance, and IT teams.
- Effective communicator, capable of explaining ICT risks in business-friendly language to senior executives.
- Strong communication and presentation skills, with the ability to translate complex ICT risk concepts into clear, well-structured reports, visual diagrams, and executive summaries.
- Ability to work independently while collaborating with multiple teams.
Our client offers flexibility, opportunities for development, several annual incentives and a very competitive remuneration package with opportunity for self contracting a well.