ICT Risk Specialist

Job Description

Company description:We are the automotive finance captive organisation of Opel and Vauxhall, supported by Groupe PSA and BNP Paribas as our strong partners and shareholders. Our team of around 1,200 employees across Europe are committed to meet the mobility needs of our customers, while sustaining and developing the Opel and Vauxhall brands through competitive and attractive automotive finance solutions.Our Strategic Priorities focus on the development of our people, performance delivery, penetration, efficiency, customer loyalty and protection - maintaining strong risk management and compliance practices.Our ValuesWe promote a collaborative culture of people who actively contribute with integrity. We are agile, open minded and adaptive to deliver at pace, with customers at the heart of all we do.We are small enough for an individual to make a mark; large enough to develop a challenging and rewarding career.Job description:ICT Risk SpecialistContract: PermanentLocation: Cardiff, UKAs an ICT Risk Specialist, you will work as part of the Fraud and Operational Risk & Control (FORC) team to support a strong and cohesive 2nd line of defence for ICT Risk & Information Security. You will be responsible for performing risk assessments, evaluating threats and controls, developing and communicating guidance and procedures, and reporting on the performance of key activities to support the OVF ICT Risk and Information Security program. In this role you will liaise with internal and external stakeholders in order to execute assessments, perform controls testing, report on findings, and influence changes where needed.What we’re looking for:This is the perfect opportunity for an individual with a good understanding of ICT Risk and Information Security Risk Management and with a relevant degree or equivalent experience. This includes experience with risk and controls analysis, risk management concepts, and having awareness of industry good practice. Well-grounded knowledge in the foundational elements of auditing IT controls would also be beneficial.Strong communication skills and the ability to effectively manage stakeholders is essential. Knowledge of relevant UK and European Laws and Regulations such as FSMA (Financial Services and Market Act), DPA (Data Protection Act) and CCA (Consumer Credit Act) would be beneficial.One of the following certifications would also be useful or would be required to achieve within 1 year of joining:• CISSP (Certified Information Systems Security Professional),• ISACA CISA (Certified Information Systems Auditor)• ISACA CRISC (Certified in Risk and Information Systems Control)• CSX (ISACA Cybersecurity Nexus)• CIPP (Certified Information Privacy Professional)• ICA (International Compliance Association)Whats on offer for you• Opportunity to gain a well-rounded knowledge of the business• Further learning and development opportunities• X4 life assurance• 25 days holiday (buy/sell available)• Excellent pension scheme• Vauxhall car lease schemeAll offers are subject to a credit and sanctions check pass.To learn more about our organisation, please visit our Vauxhall Finance website - www.vauxhallfinance.com.