IT Risk Analyst at Britam

Job Purpose:

• The IT Risk Analyst is responsible for assisting the Risk Manager to provide independent oversight and monitoring of the execution of technology, IT security, and information management to mitigate potential risk exposures. The scope of work also includes enhancing the risk management culture through awareness training, supporting disaster recovery testing and third party risk assessments.
• The IT Risk Analyst reports to the Risk Manager within the Risk & Compliance Department and works closely with respective IT functional heads and risk champions to implement risk management tools and close agreed action plans.

Key responsibilities:

• Perform system risk assessments for all IT systems/solutions being implemented and facilitate reporting and tracking and reporting of findings and management actions.
• Review and ensure that IT changes and incident management procedures are complied with.
• Provide training and awareness on IT risks and controls.
• Review and ensure that IT infrastructure and applications have adequate controls.
• Review and ensure user rights validations are done as per policy.
• Review and ensure that all open issues identified by risk team, IT security and auditors are closed within the agreed time frame.
• Keep up to date with, and understand, relevant laws and regulations such as data privacy laws.
• Participate in UAT and SIT tests.
• Confirm that staff members are adequately trained on cyber security issues.
• Review and ensure that the company has adequate IT DR measures in place.
• Support in Business Continuity Management.
• Track and report on IT Key Risk Indicators (KRIs).
• Performs process-level walkthroughs, control testing, etc. for the identification and assessment of IT risks and controls.
• Undertaking risk reviews of the IT control framework.
• Incident Management-Track and report on all IT incidents and confirm that the same are resolved in a sustainable manner.
• Product and partner risk assessment- Review and document all IT related issues in terms of the architecture, API’s etc. and follow up resolution of the same.
• Delegated authority as per the approved delegated authority matrix.

Knowledge, experience and qualifications required:

• Bachelor’s degree in finance, business administration or related field.
• Professional certifications in Risk Management desired.
• 2 - 4 years’ experience in risk management.

Technical/ Functional competencies:

• Financial Risk Analysis.
• Risk assessment techniques.
• Risk response strategies. 
• Excellent organizational and analytical skills.
• Report writing skills.

Leadership category responsibility framework (Core Competencies):

Emerging Leaders in Britam need to:

• Plan, direct and apply efficiencies and resources in order to optimize output and profitability against time, cost and team targets.
• Effectively communicate strategic and operational departmental goals and objectives to peers and others in order to ensure proper implementation.
• Ensure that department priorities are adhered to and effectively communicated.
• Ensure competent and effective people resources through appropriate coaching, development and people supervision as appropriate.
• Embody a high performance, proactive culture.
• Effectively ensure the adherence to key performance areas, deadlines and goals in order to optimise operational effectiveness.
• Effectively communicate resource needs, possible opportunities and achievements to management in order to aid them in their decision-making.
• Effectively set and monitor priorities and objectives for more junior staff.
• Understand and communicate objectives in relation to the larger organizational impact.
• Effectively disseminate knowledge within the correct context, towards subordinates as well as management.
• Appropriately model the company values while setting the pace and energy for delivering.
• Effectively manage and communicate change within the department in order to increase staff and process effectiveness.
• Provide access to accurate and consistent information and services across all channels. 
• Ensure a seamless experience for clients.
• Improve service delivery for clients.
• Engage in continuous brand building to become the trusted partners to clients.