This job offer is not available in your country.

Principal IT Risk Analyst

Fresenius Medical CareManila National Capital Region (Manila)

30+ days ago

Job description

The Principal IT Risk Analyst provides technical expertise and supports Digital Technology & Innovation (DTI) in identifying, assessing, documenting, and resolving IT risks. This role serves as a key core team member in drafting IT risk analyses for all IT related processes. The role reports to the Director, DTI Risk Management and performs the DTI Risk Management and Fresenius Medical Care Enterprise Risk Management processes. The individual will help drive critical cyber security risk management initiatives across the enterprise.

PRINCIPAL DUTIES AND RESPONSIBILITIES :

Conduct IT risk assessments, using subject matter expertise, to identify both inherent and residual risk ratings.
Apply sound judgment in evaluating risks and controls; effectively challenge IT customers on the identification and acceptance of risks and the adequacy of controls and mitigating factors.
Partner with risk owners and stakeholders to obtain appropriate risk response plans and monitor risk response plans
Assist with oversight and communication of the portfolio of IT related risks with limited oversight.
Provide Management with advice on strategies and innovations to continuously improve our risk management processes.
Provide guidance and advice for other IT risk management team members on operational risk processes.
Understand and stay current on best practices and guidance on achieving security.
Partner with other groups within DTI, Global Internal Audit, and Enterprise Risk Management to ensure risks are appropriately communicated and remain consistent with the ever-changing enterprise / industry risk environment.
Develop procedures to support the execution of operational risk processes.
Evangelize security best practices in dealings across all BU’s and departments.
Maintain strong knowledge of risk management practices and IT best practices.
Build and maintain strong relationships with personnel across all Business Units.
Review and comply with the Code of Business Conduct and all applicable company policies and procedures, local, state and federal laws and regulations.
Assist with various projects as assigned by a direct supervisor.
Other duties as assigned.

EDUCATION :

Bachelor’s Degree in Management Information Systems, Computer Science, or business / science related field required

EXPERIENCE AND REQUIRED SKILLS :

8-12 years of experience working with internal / external audits or risk management - methods and techniques for the assessment and management of risk.

Ability to operate as a pro-active and result-driven problem solver with excellent analytical and interpersonal skills.

Ability to understand IT processes, management objectives risk appetite and tolerances and impact of objectives, risk appetite and tolerances and impact of changes to risk profiles.

CISA, CISSP, CRISC, or other relevant certification(s) desired.

Strong client services orientation and communication skills coupled with a high sense of urgency to keep appropriate partners informed, including solutions to overcome obstacles to deliver to expectation.

Strong understanding of risk management, integration with enterprise risk management, and the integration with business strategy.

Solid understanding of IT Audit best practices. Former Big 4 IT auditor or Financial Services IT risk management experience preferred.

Experience in IT governance, risk, and controls, including governance frameworks.

Demonstrated technical writing, communication, and presentation skills.

Ability to work effectively in a team environment.

Creativity in addressing technical challenges.

Proven record to deliver results.

Remote position with an occasional trip to the office

Career with a purposeWe offer an opportunity to create and deliver treatments that save and change lives for the better. We’ll support your ongoing development. And you’ll be part of a dedicated team of people who inspire each other to create the best possible healthcare outcomes each and every day. Inclusion and diversityJoining Fresenius Medical Care means becoming part of a team that values diversity. We embrace the wealth of different backgrounds, cultures, experiences and opinions that make up our workforce and strive to create an inclusive atmosphere in which all our employees feel valued. StabilityDeveloping innovative products and continuously improving our renal therapies made us the clear market leader in the production of hemodialysis machines, with sustainable, profitable growth . This position provides our 125000 employees with the stability and security they need to help improve the lives of our patients. Learning and developmentWe offer participation in programs at world-class business schools, leadership development, regular training for our nurses, health care professionals and manufacturing staff and digital access to high-quality educational content for all employees worldwide 24 / 7. Local benefitsOur employees enjoy both local and global opportunities for growth and personal fulfilment. We offer local benefits designed to suit the requirements of the respective country and place of work to create ideal conditions everywhere. Work-life balanceWe want to empower people to deliver better care. Therefore, we promote a better work-life balance through flexible working hours, part-time models, the possibility to work from home, and more.