Job
Description
Pro-active communication approach with local AZT / AZS entity colleagues, especially building strong relationships with other key / safeguarding functions Actively supports the implementation of the Risk Policy Framework (Risk Policy, Risk Strategy, NFRM policy) and Control Assurance Report. Support running Risk Reporting in time and quality, report of any material risk management related information to relevant stakeholders Support timely execution of the risk management lifecycles (NFRM, ERM, SoG) and drive for full compliance with AZ Technology Risk Framework (Risk Policy, Risk Strategy, NFRM Policy). Support implementation and coordinate Top & Emerging Risk assessments process. Support maintenance of an oversight on IT RM - ARA coverage (having strong interaction with Local ISO). Coordinate activities with other safeguarding functions, in particular Data Privacy, Information Security, TPRM, Protection & Resilience, Compliance, Legal. Have a coordinated view on risks. Coordinate risk assessments supporting the business in control implementation, documentation and performance, development of mitigation plans and its follow up. Perform project risk assessments reviews and decisions in the relevant tool, in an accurate and timely manner. Keep up to date RM tools (ServiceNow and ORGS), ensure consistency between what is reported in the systems and reality. Keep up to date the Regions MS Teams Repository. Support the timely delivery and high quality of the Control Assurance Report and other related audit reports by emphasizing on the comprehensive coverage, quality and effectiveness of the internal control system. Support awareness sessions in the location, and with the OE to explain the CAR results. Support the NFRM Testing Plan with the execution of 2nd LoD testing activities, and coordination of updated testing dates (working with Internal Audit, external audit plans, and compliance, as necessary). Qualification, Experience, Technical and Functional Skills Degree holder Relevant Certifications like C-Risk, ISO 31000 Certified Risk Management, COBIT Multi-year professional experience in different areas of IT risk management or other safeguarding functions. Experience in IT Risk management,. ISO, IT Security etc Good understanding of the risk categories: operational risk, IT risk, project risk, third party risk, business risk. Good knowledge of supplier relationships and outsourcing management Basic knowledge of local regulatory environment and standards like: COBIT 2019, COSO, and ISAE/SOC Strong communication and conflict management skills Advanced skills in MS Office, knowledge of ORGS, SNOW is a plus Fluent in English (oral and written) Ability to work in an international team in a global set-up
