Technology Risk and Control Analyst (12 month FTC)

Technology Risk and Control Analyst (12 month FTC)

Join to apply for the Technology Risk and Control Analyst (12 month FTC) role at Chaucer Group

Direct message the job poster from Chaucer Group

About Us:

Chaucer is a leading insurance group at Lloyd's, the world's specialist insurance market. We help protect industries around the world from the risks they face. Our customers include major airlines, energy companies, shipping groups, global manufacturers and property groups. Our headquarters are in London, and we have international offices in Copenhagen, Miami, Dubai and Singapore to be closer to our clients across the world. To learn more about us please visit our website: www.chaucergroup.com

Job Profile Summary:

• Assist in the identification and assessment of technology risks and issues.
• Conduct control testing to evaluate the design and operating effectiveness of technology controls and document test results in accordance with established methodologies.
• Monitor the progress of remediation efforts and track the implementation of corrective actions.
• Work collaboratively with all stakeholders, including the second and third lines of defence, to ensure operational efficiency and resilience in internal assurance activities.
• Prepare summary Risk, Control reports, and communicate findings to management and key stakeholders.
• Develop and enhance dashboards for monitoring Key Risk Indicators (KRIs), Key Performance Indicators (KPIs), and control effectiveness.
• Collaborate with IT and other departments to ensure compliance with regulatory requirements and internal policies.
• Stay updated with the latest industry trends and best practices in technology risk management.
• Promote a strong risk culture in the organisation through training and awareness of effective technology controls.
• Track and manage effective remediation for key audit findings.
• Ensure that all control activities comply with relevant regulatory requirements and industry standards.
• Identify opportunities for continuous improvement in risk management and control processes.
• Maintain comprehensive documentation of risk assessments, control testing, and remediation efforts.
• Facilitate regular communication with stakeholders to keep them informed about risk and control activities and any emerging issues.
• Support the integration of new technologies and systems into the existing risk management framework.
• Professional Experience: Ideally, the candidate should have experience in technology risk management or a related field. This experience should include conducting risk assessments, developing and implementing risk mitigation strategies, and monitoring the effectiveness of technology controls.
• Industry Knowledge: The candidate should have a strong understanding of regulatory requirements and industry standards related to technology risk management. Experience in working with frameworks such as NIST, ISO 27001, or COBIT would be beneficial.
• Technical Skills: Proficiency in using risk management tools and software, as well as a good understanding of IT systems and infrastructure, is preferred. The candidate should also have experience in collaborating with IT and other departments to ensure compliance with regulatory requirements and internal policies.
• Certifications: Certifications: Professional certifications such as CRISC (Certified in Risk and Information Systems Control) or CISA (Certified Information Systems Auditor) are preferred but not essential

Education & Experience

• A bachelor’s degree in information technology, Computer Science, or a related field is preferred but not essential.
• Strong understanding of Technology controls including IT General Controls (ITGC’s)
• Familiarity with relevant frameworks and standards such as COBIT, ISO27001 and SOX.

Personal skills

• Proven experience in technology risk management or a related field.
• Analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.
• Knowledge of regulatory requirements and industry standards related to technology risk management.

Why Join Chaucer?

We are an established market leading Insurer, where over the past 5 years, the Chaucer Group has seen significant and successful growth. In 2019, we wrote $1.4bn of Gross Written Premium, closed 2023 with $2.7bn, and are on track to write well over $3bn in 2024.

This is an exciting time for Chaucer; we have the people, the platforms, the expertise and the relationships to continue our recent success. We will remain focused on the areas where we can provide the most expertise and value to our brokers and clients.

We offer:

• A flexible 2 days in the office hybrid work model that supports individual and team needs.
• A diverse, inclusive culture that values people for who they are.
• Extensive, non-contributory benefits, including medical, life, and pension cover, flexible holidays, and wellbeing support.

Note: This description is focused on the Technology Risk and Control Analyst role and its responsibilities, qualifications, and benefits. Other job postings and location history listed below are not part of this role.