Share this Job

IT Risk and Compliance (GRC) Analyst

Apply now »
Apply now

Apply for Job


Vacancy Type: Experienced   

Job Area: Information Technology

Location: Milano   

Area description

FinecoBank is the direct multichannel bank of the UniCredit Group with 1.118 million clients and one of the largest advisory networks in Italy, with almost 2,600 Personal Financial Advisors, a net sales of 5 billion euros and 22 billion euros of equity in the Private segment as at 31 December 2016. Since 1999 Fineco has been synonymous with innovation in financial services. Fineco is the world's most recommended bank by word of mouth, according to a 2015 survey by The Boston Consulting Group.

Function description

The ICT function develops and manages the software applications and the Bank’s technological infrastructure. It boosts the rationalization of all processes supporting business lines, through the collection of needs related to IT services and the promotion of technological opportunities offered by the evolution of the information system.

Job description

Main Responsibilities:

  • Supporting ICT department program developing, implementing maintaining and updating internal controls (policies, procedures, guidelines) as required, including compliance with regulators and best practices standards
  • Aligning the IT policy with organization policies and plans;
  • Designing methodologies for risk identification, analysis and management of ICT risks and controls
  • Supporting the team in managing identity access management, incident management, business continuity, disaster recovery planning and event simulation
  • As needed, mapping business and user requirements into relevant system specs
  • Where required assessing, applying and designing the impact of system changes on users, internal and external clients and stakeholders
  • Collaborate with teams across the company to promote and implement adequate practices and controls ensuring compliance with policies/plans/standards

What we expect from you

  • Ability to read, write and speak English (B2 or better)
  • Ability to work with cross-organizational and cross-functional teams
  • Bachelor’s degree in computer science/engineering or equivalent
  • Familiar with risk management and risk assessment concepts and methodologies
  • Possesses intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.) and IT application control concepts (application processing controls, system reconciliations, interfaces, reports testing, workflows); proficient knowledge of system development lifecycle methodology, operating system and database platforms.
  • Experience within the IT/ high transaction volume/ financial services industries.
  • Knowledge of IT frameworks and standards including COBIT 5, ITIL
  • Awareness of principles IT Audit Management
  • Awareness of banking regulations (Privacy, Bankit 285, BCE, L.231, GDPR, PSD2)
  • Awareness of common SLCD methodologies (agile, waterfall, etc.)
  • Ability to communicate risk topics to both technical and non-technical stakeholders
  • Good problem solving skills and attention to details
  • At least 5 years of previous experience in ICT Risk role
  • CISA, ITIL, CGEIT and other certifications in IT Governance topic are a plus

What we offer to you


Job Segment: Risk Management, Computer Science, Consulting, Bank, Banking, Finance, Technology

Apply now »
Apply now

Apply for Job