IT Risk and Compliance Analyst
Ardagh Group
London, UK
Published 1 week ago
Compliance Management Systems / Technology
IT Risk and Compliance Analyst
A Member of the Change function. Responsible for analysing the financial, safety, and security threats that the Ardagh may face. Perform or monitor all IT risk assessments, which comprise analysing, identifying, describing, and quantifying risks that impact all business risks. Responsible for ensuring Ardagh's IT operations and procedures meet government and industry compliance standards, researching industry compliance regulations and policies.
Key Responsibilities:
A Member of the Change function. Responsible for analysing the financial, safety, and security threats that the Ardagh may face. Perform or monitor all IT risk assessments, which comprise analysing, identifying, describing, and quantifying risks that impact all business risks. Responsible for ensuring Ardagh's IT operations and procedures meet government and industry compliance standards, researching industry compliance regulations and policies.
Key Responsibilities:
- Perform Risk Assessment against the Technology Risk framework: risk/ issue mapping against the policy controls, identifying control failures and support drawing up management plans.
- Support preparing risk management plans and monitor progress that will help to decrease risk factors.
- Identify and develop business processes to improve efficiency and streamline procedures. Assist the leadership in Ardagh's IT-related audits including external (PCI, SOX).
- Assist with development and implementation of application security policies, standards, and education efforts
- Collaborate with the Corporate Information Security and Compliance teams in Ardagh to review Information Security policies, standards, procedures, and guidelines.
- Coordinate and assist in the creation/modification of the SOX control narratives per client group request
- Ability to identify control deficiencies based on assessing actual working papers vs standards and established policies and communicating those control deficiencies to the relevant control owners
- Work with stakeholders and Subject Matter Experts on the maintenance and/or development of documentation (include Standards, Configuration Manuals, Process Manuals, and exception requests) as a result of audit or compliance findings.
- Assist in planning and implementing the security measures to protect computer systems, networks, and data
- Identify and develop business processes to improve efficiency and streamline procedures.
- Bachelor's or Master's Degree in Computer Science, Business Administration, or other related
- Ability to work with a broad spectrum of people with varying levels of technical acumen
- Knowledge of industry compliance requirements and standards
- Outstanding prioritization and time-management skills
- Pragmatic and solution oriented
- Process development and implementation
- Bachelor's degree highly recommended
- Advanced technical skills in Power Point, Excel, Visio and Word
- Excellent ability to work as a team and perform in high-pressure situations