Job Description :
- Coordinate and implement the management of operational risk within the IT environment (applications, infrastructure, data, and information security).
- Review and evaluate IT policies, standards, and procedures from an operational risk perspective.
- Monitor the effectiveness of internal controls related to IT systems and processes.
- Prepare regular IT risk reports to the Risk Management Coordinator.
- Coordinate with relevant units to conduct risk assessments for projects, incidents, or system changes.
- Oversee the implementation of RCSA (Risk Control Self-Assessment), KRIs (Key Risk Indicators), and incident management within IT units.
Qualifications :
- Bachelor's degree in Information Technology, Information Systems, Computer Science, or Risk Management
- Minimum 2 years of experience in IT Risk, IT Audit, or IT Governance
- Proficient in RCSA, KRI, and incident management
- Familiar with risk frameworks such as ISO 31000, COBIT, and NIST
- Strong understanding of IT: applications, infrastructure, and information security
- Capable of preparing reports and evaluating IT internal controls
- Analytical, and detail-oriented
- Able to coordinate across teams and deliver regular risk reports
- Preferred certifications: CRISC, CISA, ITIL, ISO 27001