Senior Manager/ Manager - IT Risk & Control Assurance

Join our enterprise as a Manager to drive critical and impactful risk management practices. Play a key role in safeguarding our technology landscape while advancing your career in a dynamic, forward-thinking environment.

What you'll do:

• Support and execute IT risk and control initiatives, including risk management, assessments, controls testing, and security governance
• Evaluate risks in accordance with policies, standards, and best practices for IT and business projects
• Review security assessments, risk acceptance decisions, and mitigation strategies for senior management
• Ensure proper implementation of security measures, governance, and risk controls across IT services, infrastructure, and applications
• Support audit activities and consolidate artifacts for audit closure
• Promote risk awareness and conduct related events within the enterprise
• Align personal development with business objectives to foster team growth

What you'll bring:

• Bachelor's degree in IT, Risk Management, or Audit
• for manager grade, 4-6 years in IT or audit roles; 2-3 years in technology risk assessment and control testing
• for senior manager grade, 10 years in IT/tech risk/ tech audit experience is strongly preferred
• Preferred certifications: CISA, CISSP, CRISC
• Experience in security assessment planning and risk evaluation using risk-based methodologies
• Skilled in reporting technology risks to stakeholders
• Strong technical writing skills for reports, dashboards, and metrics
• Knowledge of ISMS, COBIT, NIST, ISO27000, ISO31000, COSO, and other risk frameworks
• Deep understanding of audit controls, IT general controls, and tech risk management, including infrastructure, cloud, cyber, and applications security
• Background in enterprise networking, operating systems, and database security controls
• Skilled in DevSecOps, cloud security, GDPR, PIPL, and cyber laws