Back to Job Search

Job Description

Our client an international banking group are currently seeking an experienced Operational Risk Analyst based in Madrid.

Skills & Experience Required:

The successful candidate will have exposure to implementing risk management programs in Global organisations, with good knowledge of technology, risks, architectures and related tools. Prior Third Party Risk experience (Outsourcing, Vendor management, IT, Cyber, etc.) and exposure to the Financial Services industry is a must. Experience with GRC tools and other risk management information systems is preferred.

Negotiation, Conflict Management and Presentation skills are necessary. Experience interacting with regulatory agencies is a plus.

Specific requirements:

  • 4+ experience specifically in third party and technology risk assessments.
  • Bachelor degree in Information Technology, Information Security, Business or Risk Management (or equivalent professional qualification).
  • Team player - focus on the success of the whole team. Working well both with others, as well as individually.
  • Excellent stakeholder management skills.
  • Experience in Outsourcing risk management, Third Party Risk Management, Technology risk, Information Security or an Audit role
  • Good listening and analytical skills - being able to come to a thoughtful and business focused conclusion quickly.
  • Ability to co-operate and work well with others adopting an approachable style - Important as we work closely with a large and diverse set of customers;
  • Ability to see the customer perspective, i.e. from a business point of view, the most secure solution is not always workable or realistic considering costs and benefits.
  • Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate.
  • Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done.
  • Taking accountability for their actions and be open and honest when things have gone wrong, and celebrating successes when things have gone well.
  • Being rigorous and thorough - especially when logging and tracking issues through to conclusion.
  • Ability to manage their workload as to meet the realistic targets and priorities set in conjunction with management.
  • Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business.
  • Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate.

Competencies:

  • Understanding of the banking industry's regulatory requirements for managing of third parties (e.g., EBA Guidelines on Outsourcing arrangements, FCA Sysc 8).
  • Experience working with legal and procurement teams as part of contract design to include key provisions for Outsourcing and Supplier Risk Management.
  • Good knowledge of Information Security, Business Continuity, and IT Audit methodology and concepts.
  • Ability to perform Supplier Risk assessments through on-site visits and reviewing SSAE16s/SOC1/2.
  • Ability to articulate risk management concepts in business language.
  • Excellent written and verbal communication skills.
  • Proficient with Microsoft Office Suite.
  • Prior experience documenting tool requirements to support risk management.
  • Ability to travel to supplier sites and perform assessments as necessary.
  • Proven ability to manage issues through to resolution; skilled at making judgment calls.
  • Ability to successfully multitask and complete difficult assignments within deadlines which may have short lead times.
  • Industry certifications (e.g. CISA) or willingness to obtain the same.
  • Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework.
  • Multilingual capability (English and/or French) is preferred.

Conduct:

  • Be a role model, supporting and fostering a culture of good conduct.
  • Demonstrate proactivity, transparency and accountability for identifying and managing conduct risks.
  • Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure

Eames Consulting is acting as an Employment Agency in relation to this vacancy.