it risk & control analyst | budapest

posted
contact
randstad hungary
job type
permanent
apply now

job details

posted
location
budapest
job category
IT/telco
job type
permanent
reference number
29574 / 30881
contact
randstad hungary
Click on the "Apply" button and choose from the application options that requires not more than 2 minutes.
For some of our positions we conduct video interviews. If you wish to learn more about how to prepare yourself effectively, here are some useful tips & tricks to a successful online introduction.

Cégleírás / Organisation/Department

Aegon Global Technology Service (GTS) provides technology infrastructure support as well as business consulting services to the Aegon USA & European enterprise and business partners. The information technology services encompasses regional services, enterprise-wide application services, architecture, product assessment, customer service, internet and messaging, server management, telecommunications, security, data service and more. We are looking for an IT Risk & Control Analyst to be part of their team. 

 

Being hired means, that you join one of the most dynamically growing IT companies in Budapest full with inspiring colleagues locally and world-wide, unique learning- and career opportunities and great compensation. The central location allows you a really good accessibility, the well-equipped modern office a pleasing working environment.

 

Give it a try, contact us and have a chat about the next steps. Make sure for yourself that this is a community where your thoughts, your work-life balance, your prosperity are really important and good performance is valued by everyone.

 

Pozíció leírása / Job description

On a day-to-day basis, this position will perform responsibilities such as some or all of the
following:

  • Conduct in IT control and security focused risk assessments.
  • Perform and document results of application risk assessments.
  • Conduct reviews, identify gaps in architecture, and develop an overall risk management plan.
  •  Validate implementation and functionality of security and control requirements and appropriate information technology (IT) policies and procedures that are consistent with the organizations mission and goals.
  • Assist in the determination if gaps in security design or controls exist and providing recommendations for remediation and implementation of mitigating controls.
  • Identify security and control requirements specific to an information technology (IT) system in all phases of the system life cycle.
  • Conduct risk analysis whenever an application or system undergoes a major change.
  • Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
  • Participate in Risk Governance process to provide security risks, mitigations, and input on other technical risk.
  • Verify and update security and control documentation reflecting the application/system security design features.
  • Support the preparation, distribution, and maintenance of plans, instructions, guidance, and standard operating procedures.
  • Help ensure that plans of actions and milestones or remediation plans are in place for remediation tasks identified during risk assessments, audits, inspections, etc.
  • Promote awareness of security and control issues among management and ensure sound principles are reflected in the organizations vision and goals.
  • Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
  • Support the verification that all acquisitions, procurements, and outsourcing efforts address information security and control requirements consistent with organization goals.

Elvárások / Requirements

Individuals are expected to have the following qualifications at or above the documented
proficiency levels:

  • Skill in creating policies that reflect system security objectives and control requirements.
  • Excellent communication skills in writing and communication information in a clear, concise manner.
  • Ability to understand technology, management, and leadership issues related to organization processes and problem solving.
  • Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
  • Knowledge of Risk Management Framework (RMF) requirements.
  • Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
  • Experience working with risk assessments and controls.
  • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Ability to function in a collaborative environment, seeking continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise.

Amit kínálunk / Offer

  • Home office
  • Flexible working hours
  • Health Insurance
  • Yoga classes
  • Training & Development opportunities
  • Highly people-centric environment
  • Modern office environment

Kapcsolattartó / Information

Rác Ildikó

ildiko.rac@randstad.hu