Job Description
Responsibilities
- Identify risks, define Key Risk Indicators (KRI), and establish mitigation controls
- Develop and maintain IT Risk Register and periodic risk/compliance reports
- Draft and update IT governance policies, procedures, and guidelines
- Perform gap analysis against frameworks/standards (e.g., COBIT, ISO, ICoFR)
- Manage and ensure effectiveness of IT risk controls in business processes
- Act as Level-1 risk handler
- Support internal and external audits (preparation, execution, follow-up, and monitoring)
- Act as audit liaison for all IT audits (internal, external, regulatory)
- Manage audit findings and ensure proper execution of action plans
- Prepare risk and compliance reports for Management and relevant stakeholders
- Develop and implement IT Governance & Risk Management frameworks
- Collaborate with Risk Management, Compliance, Security, and Internal Audit team...