We are delighted to announce that Audit & Risk Recruitment have been exclusively mandated by a FTSE 250 business to help build an Audit, Risk and Compliance function for a leading FMCG brand in Scotland.
The IT Risk & Controls Manager, who reports into the Head of Risk, is responsible for overseeing the identification, assessment, and mitigation of IT-related risks within the organisation.
This role involves developing and implementing IT risk management and control frameworks, ensuring robust internal controls, and maintaining compliance with regulatory requirements. The IT Risk & Controls Manager will collaborate with various IT and business units to enhance the organisation’s overall risk posture.
Key Responsibilities:
* Identify, assess, and prioritize IT risks, including cybersecurity, data privacy, and operational risks.
* Design and implement effective IT controls to mitigate identified risks.
* Monitor and evaluate the effectiveness of IT controls and risk management strategies.
* Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, ISO 27001).
* Prepare and present IT risk reports to senior management and the board of directors.
* Conduct training and awareness programs on IT risk and controls.
Qualifications & Experience
* Minimum of 5 years of experience in IT risk management, IT audit, or a related field.
* Strong understanding of IT risk management principles and practices.
* In-depth knowledge of IT risk management and control frameworks e.g COBIT, ITIL
* Ability to analyse complex IT environments and identify potential risks.
* Excellent organizational and project management skills.
* High attention to detail and accuracy.
* Strong leadership and influencing skills