We are seeking an experienced Senior Technology Risk & Assurance Analyst to join our client, a leading financial services organization based in Sydney. This high-impact role acts as a crucial risk function, balancing proactive risk ownership with comprehensive audit management and assurance.
The ideal candidate is an established auditor or assurance professional ready to transition into the "auditee" seat, leveraging their deep expertise to build, implement, and test robust controls.
Key Responsibilities:
As a Senior Analyst, you will ensure technology risks are effectively managed and controls are fit-for-purpose, especially within an Agile delivery environment. You will:
- Audit and Assurance Management: Serve as the key point of contact for Technology and Operations, driving and facilitating high-volume internal and external audits and assurance activities.
- Control Ownership (Hands-On): Work with Line 1 owners to identify, implement, and review new and existing controls. This includes performing independent deep dives into control appropriateness.
- GRC System Management: Assist the GRC team with the system, utilizing platforms like Readinow (or similar GRC experience) for risk and control tracking.
- Framework Implementation: Apply strong working knowledge of industry standards like CPS220, COBIT, and ITIL to the technology environment.
- Agile Governance: Ensure the effectiveness of controls within frameworks such as SCRUM and Safe, understanding the unique requirements of Agile delivery.
- Cyber Support: Contribute to broader cyber resilience, including incident response planning (BCP/DR), phishing tests, and cyber awareness programs.
- Stakeholder Translation: Communicate complex technical and risk concepts clearly to non-technical stakeholders across the business and with external partners.
Key Requirements:
- Experience: Minimum of 5 years of experience in either an audit or assurance role.
- Audit Aptitude: Proven hands-on audit experience, ideally seeking the transition from an Auditor (Line 3) to an Internal Controls Analyst (Line 1.5).
- Technical Knowledge: A strong understanding of IT concepts and how applications come together is highly valued.
- Framework Expertise: Working knowledge of risk and technology frameworks (CPS220, COBIT, ITIL).
- Agile Familiarity: Experience working in an agile environment and familiarity with SCRUM or Safe.
- Certifications: ISACA or working towards credentials in the risk and audit industry.
This is an opportunity to make a direct impact on organizational resilience and control maturity, offering flexible working arrangements and a great learning culture.
For more information, please contact Awais on 0421 901 366
