Jobbeschreibung
ProCredit. We are an international group of development-oriented commercial banks for small and medium enterprises (SMEs). We are active in Southeastern and Eastern Europe, South America and Germany. Our overarching goal is to combine a high developmental impact with economic success. This position is based in Frankfurt am Main at ProCredit Holding, the listed parent company of our banking group.For our Operational Risk Management team at ProCredit Holding in Frankfurt am Main, we are seeking a motivated
IT Risk Officer (m/f/d)
The Operational Risk Management team includes IT Risk and Information Security management functions. The team provides the organizational framework that enables a solid management of operational risks, including fraud prevention, information security risk, Business Continuity Planning (BCP) and outsourcing, in all ProCredit institutions, to guide ProCredit institutions through its implementation and to further develop the framework in accordance with changing conditions.
As a member of the Operational Risk Management team, you will:
- Ensure consistency of IT risk management approach, methodology and reporting, including risk assessments and controls framework
- Conduct IT risk assessments identify control gaps and determine appropriate mitigation measures in collaboration with IT and Information Security
- Maintain, operate and optimize existing Information Security tools
- Perform IT and IT security controls analysis and assess their effectiveness and impact
- Create and validate regular and ad-hoc reports for management and committees
- Evaluate and analyse available technical solutions for implementing IT/information security controls
- Participate the further development of an IT risk management / Information Security framework
- A university degree in an IT related subject
- Strong IT competence, knowledge of banking operations would be an advantage
- Experience in a risk/control/compliance role, e.g. IT / IT security
- General understanding of Information security concepts as well as standards and regulations, e.g. ISO 27000 series (ISO 27001, ISO 27002, ISO 27005 risk management), PCI-DSS and NIST
- Practical experience in IT / Information Risk, IT Security are also an advantage
- A high degree of social competence and excellent communication skills
- Ability to learn fast and assimilate new concepts
- A proactive, thorough, and independent way of working
- An excellent command of English in speaking and writing; good command of German would be an advantage
- A pleasant and open working atmosphere and an international team
- Flat hierarchies and short decision paths
- Interesting and challenging tasks and cross-team project work
- Great location in the Bockenheim district of Frankfurt am Main
- Company pension scheme
- Deutschland Ticket (country-wide transportation pass valid on regional trams, busses and trains)
- EGYM Wellpass (membership valid at a number of gyms throughout Germany as well as for online fitness courses)
- JobRad (pick a bike and pay a monthly rental fee to the company with the option to buy after three years)