Ii has been investing in our customers’ success for almost 30 years. That’s why over 420,000 people put their trust in our award-winning investment platform.
With a low, flat monthly fee, you can keep more of what you make and take control of your financial future. Whether you’re investing in an ISA, pension, or Trading Account, you have access to one of the widest ranges of investments on the market - including shares, funds, trusts and ETFs.
Lean on our award-winning, UK-based customer service team if you ever need help. And if you’re looking for investment inspiration, you can look to our expert team of journalists and their regular news and insights.
Join an engaged community of investors on the UK’s number one flat-fee investment platform.
PURPOSE OF THE ROLE:
We are recruiting for an IT Governance Senior Analyst to join the Information Security team to support our continued growth. You will lead on all aspects of IT Governance providing coordination and overall ownership of the internal and external audit activity across our IT function. This includes facing auditors, organising the resources needed to meet audit requirements, reviewing draft audit findings and assuring agreed audit actions for the leadership team are managed to delivery within a satisfactory time period.
* Maintain and update the IT risk assessments, including maintaining the internal IT controls, procedures and documentation.
* Provide feedback and appropriate challenge to control owners on internal controls, assessments, remediation and documentation.
* Review and assess control deficiencies, help develop remediation plans and determine the adequacy of mitigating controls.
* Develop strong relationships with process owners and act as a subject matter expert in designing and implementing required controls.
* Gathering attestation information for audits of IT internal controls.
* Work alongside our Enterprise Risk Team and own and maintain the IT Risk Management Framework and associated processes such as risk and control assessments.
* Identify weakness or failures in Information Security and help drive appropriate improvements.
* Manage and create monthly reporting packs for the IT Risk Forum & The IT Risk Action Review Board.
* Maintain and deliver an IT risk-based compliance assurance plan and associated processes.
* Oversee IT teams completing KRI’s, KCI’s and KPI’s providing appropriate challenge where required.
SKILLS & EXPERIENCE REQUIRED:
* Very good understanding of key technology frameworks and standards such as ITIL, COBIT, NIST, SOC2, UKSOX, GDPR, ISO27001 etc.
* Ability to proactively identify control weakness and vulnerabilities.
* Experience with internal control concepts, practices, procedures, and implementation of control.
* Ability to manage and prioritise own workload.
* Ability to report on progress, timescales, outstanding and completed activities.
* Able to foster and champion a positive risk aware culture.
PERSONAL ATTRIBUTES
* Clear communicator.
* Not afraid to challenge.
* Excellent attention to detail.
* Excellent organisational skills.
* Excellent verbal and written communication skills with the ability to interact effectively with all levels of management.
* Ability to work with several different areas of the Business and build good working relationships.
#J-18808-Ljbffr