Latest jobs

We're sorry, there are currently no jobs that match your search parameters

Back to jobs Technical Risk Manager
  • Sheffield, South Yorkshire
  • £45,000 to £60,000
  • (Permanent)
We're sorry, you can no longer apply for this job.

SUMMARY OF ROLE
Supporting the annual PCI DSS assessments and regular internal reviews
Gathering and reviewing audit evidence through the course of the year
Performing process and controls reviews leading to process and controls improvements
Support the Senior Risk Manager through the assessment phase
Demonstrating the team’s core values; Efficiency, Awareness, Professionalism and Delivery

JOB DIMENSIONS
Number of staff managed: Nil
Budget controlled: N/A
Other dimensions helpful to understand size/scope of job: Reasonable travel within the UK

PRINCIPAL RESPONSIBILITIES
- Supporting the annual PCI DSS assessments and regular internal reviews
- Gathering and reviewing audit evidence. This company undergoes multiple PCI DSS assessments during the year and has an established programme of gathering evidence from various teams at regular intervals, reviewing, providing feedback and remediating any issues in a timely manner. The role entails supporting the Senior Risk Manager with the day to day management of this process.
- Process and controls reviews for improvement. Certain processes and controls require frequent compliance reviews which may identify opportunities for further improvement or efficiencies. The role entails supporting the Senior Risk Manager with conducting such reviews and identifying improvements.
- Audit preparation. This is a meticulous task of preparing for forthcoming audits. It involves gathering, sorting and saving evidence on the audit portal for external audit review and coordinating the various audit activities at multiple locations. The role entails assisting the Senior Risk Manager with this process.
- Demonstrating the team’s core values; Efficiency, Awareness, Professionalism and Delivery
- Effective delivery requires collaborating with various teams to gather evidence, avoiding duplication of effort, sound understanding of IT risks and controls as well as technical knowledge of IT systems, operating systems and applications
- Demonstrating professionalism in approach

ESSENTIAL

KEY SKILLS
- Team player who can work in a collaborative environment
- Effective communication and interpersonal skills
- Strong analytical, report writing and presentation skills
- Keen learner and committed to presenting high quality deliverables within agreed timescales

KNOWLEDGE
- IT risks and controls
- Technical knowledge of IT systems; operating systems and applications
- Payment industry

EXPERIENCE
At least 5 years’ experience 1 or more of the following:
- IT security administration / management
- Systems administration
- IT auditing

QUALIFICATIONS
1 or more of the following:
- Degree in IT or equivalent
- CISA or CISM qualified

DESIRABLE
- Internal Security Assessor (PCI ISA)
- PRINCE2
- PCI assessments
- IT auditing
- PCI DSS
- Payment industry