With key markets in the Netherlands, the UK, and the US, as well as growth markets in China, Brazil, and Iberia, our international partner supports one of the largest financial services groups, by offering IT, finance, risk, model validation, actuarial, audit, and asset management services with the purpose of helping their customers to live their best lives.
A diverse workforce and an inclusive culture are fostered by our partner. They value diversity as a whole, including but not limited to, racial, gender, and ability diversity as well as diversity in language, culture, beliefs, age, origin, background, perspectives, and experiences.
This Senior Risk and Compliance Analyst position is part of the ICC Controls Team and will primarily perform comprehensive assessments of third-party SOC 2 type 2 controls reports to determine impact of the results of testing of third-party controls on our organization. They will also execute controls testing of the management, operational and technical controls to determine overall effectiveness of controls.
This position is focused on global delivery providing centralized services and supporting global program build-out.
Pozíció leírása / Job descriptionOversee the testing team and ensuring product and quality control is up to company standards.
Supervise, manage, support and evaluate controls testing personnel.
Coordinating testing activities for every stage of the test process including control evidence collection,
coordination with control owners on testing controls and updating testing strategies in line with best practices
Assess technology controls across various applications, servers, databases and cloud environments to identify
control issues and assist management in developing risk mitigation strategies and remediation plans.
Execute IT control testing to provide management confidence in the operational effectiveness of IT controls.
Assist in the development and oversight of metrics and reporting capabilities. Partner with technology and risk
stakeholders in managing the company GRC tool (e.g., ServiceNow)
Prepare reports/presentations that detail the results of control evidence collection, controls testing,
issues/actions and improvement recommendations.
Collaborate cross-functionally with teams as needed including IT Risk (2nd Line), Information Security, Internal
Controls, Internal Audit and/or external consultants to mature Aegon’s IT Risk Management Program.
Bachelor’s degree in information technology, management information systems, computer science, or
equivalent experience.
Eight years of experience working in a technology related environment, specifically within, Information Security,
IT Risk & Compliance, IT Controls, IT External or Internal Audit, etc.
Tactful and diplomatic when engaging with all levels of management always maintaining a
professional demeanor
Problem-solving and decision-making skills to identify and address issues to mitigate risk.
Experience in financial services or banking industry with understanding of financial services
regulatory environment
Excellent written/oral communication and relationship-building skills
Analytical and problem-solving skills
Project management and organizational skills
Preferred
Strong knowledge and/or prior experience in the insurance, pensions or financial services industry, including the
applicable business processes and technology.
One or more of the following certifications:
(CISA) Certified Information Systems Auditor
(CRISC) Certified in Risk and Information Systems Control
(CISM) Certified Information Security Manager
Proficient in the use of Microsoft Office (Excel and PowerPoint), Power BI and Power Automate.
Test management background with a proven history of success
A strong understanding of test management processes, design techniques, and best practice