IT Risk & Cyber Analyst

Decskill, founded in 2014 as an IT Consulting Company, places paramount importance on its greatest asset: its people. Our main mission is to deliver value through knowledge and talent, and we achieve this by fostering a culture of excellence and investing in the development and well-being of our people. With over 600 dedicated professionals and offices in Lisbon, Porto, Madrid, and Luxembourg, Decskill operates across three core areas:

Decskill Talent: We believe that our people are key to our success.

Through Decskill Talent, we empower our team to embrace the digital transformation challenges of our clients. We collaborate with clients to drive innovation, ensuring project success and business growth.

Decskill Boost: Equipping our team with the latest tools and methodologies, we optimize Time-to-Market and deliver innovative solutions exceeding client expectations.

Decskill Connect: Our team collaborates closely with clients to implement and manage IT infrastructures that generate long-term value.

At Decskill, we believe that by nurturing and empowering our people to confront the challenges of digital transformation, we create value not only for our clients but also for our entire ecosystem, fostering a digital community dedicated to growth and progress.

We are looking for an IT Risk & Cyber Analyst:

Responsibilities

• Reinforce Wealth Management third party security framework

1. Ensure Wealth Management Third Party Technology Risk Management procedures are aligned with client´s framework;
2. Prepare, coordinate and execute Third Party IT Risk & Security awareness;
3. Reinforce the governance with RISK Functions, Procurement and Outsourcing coordinators;
4. Contribute to the Wealth Management IT Risk & Cyber Security Committee.

• Contribute to Wealth Management cyber security programs

1. Perform IT Risk & Cyber Risk Assessment of WM Internal and external IT Providers;
2. Contribute to the execution Wealth Management Third Party Risk Technology roadmap;
3. Record in Wealth Management Third Party Risk Management database all IT arrangements;
4. Define and implement an action plan aiming to execute IT audit considering regulatory requirements.

• Execute Wealth Management third party controls

1. Prepare, organize and execute Annual Third Party Monitoring campaign;
2. Execute Group IT Control Plan on Outsourcing, nearshoring & purchasing arrangements;
3. Perform control on IT Risk & Cybersecurity clauses in WM IT contracts.

• Improve efficiency around third party

1. Maintain Third Party Security dashboard using for instance Power Bi solutions;
2. Ensure data quality of Third Party referential;
3. Anticipate and react in case of Third Party Cyber alert on external supplier.

Nice to have

• Certifications TPRA, ISO 27001, CISSP, CRISC, CISM, CISA

If you’re interested in this job please send your CV in English to [email protected] with reference “IRCA /SS”)

Decskill is committed to equality and non-discrimination with all our talents. We recruit and promote talent, based on diversity and inclusion, regardless of age, gender, ethnicity, race, nationality or any other form of discrimination incompatible with the dignity of the human being.