Founded in 1999 in Vienna, the Qualysoft Group is a manufacturer-independent IT consulting and services company, which successfully provides support for its international customers with the aim of boosting their competitiveness and economic efficiency through innovative IT solutions.
Its focus is on financial services providers, telecommunications companies, the automotive industry and energy service providers. Over 400 employees in 6 subsidiaries work together to ensure state of the art solutions for our clients.
We are looking for new colleagues in Qualysoft teams for diverse projects providing continuous learning opportunities. Our common goal is to provide honesty, development and a stable background while getting to know the latest technologies. We are waiting for your application for the position below!
Team & Organization:
This role is part of a small global team within the Enterprise Technology Controls and Risks (ETCR) group, specifically within the Assessment team.
The team is responsible for: Technology Non-Financial Risk Assessment (NFRA) and Supporting related and sister assessment programs.
This is a full-time position requiring close collaboration with a global team and regular interaction with senior management and key stakeholders. The role offers broad visibility across the organization and requires flexibility in day-to-day responsibilities.
Responsibilities:
- Execute, maintain, and support all aspects of the NFRA process for the Technology division;
- Review and manage assessment triggers, including: Risks, Controls, Processes, Environmental factors;
- Conduct risk evaluations and control assessments, considering: Materiality of triggers, Validation results, Other environmental inputs;
- Affirm risk and control ratings with Subject Matter Experts (SMEs);
- Document assessment records in firm-wide tools;
- Prepare reports and presentations for: Primary control owners, Technology Senior Management, Business Units, Other stakeholders;
- Support the identification and maintenance of risks and controls, including key control validation;
- Interact professionally with: 1st, 2nd, and 3rd lines of defense; Business clients; Regulators
- Maintain and update relevant procedures and documentation;
- Support process enhancement initiatives;
- Support other assessment programs, including but not limited to: SOX certification, Technology Control Assessment, Cyber assessments, Other related programs.
Requirements:
- Strong verbal, written, and interpersonal communication skills;
- Ability to work effectively with all levels of the Technology organization and business units;
- Experience and understanding of: Technology controls, Information security risks, Business risks;
- Strong IT aptitude and understanding of technology concepts and terminology;
- High level of diligence and attention to detail;
- Strong analytical and problem-solving skills;
- Proficiency in: Spreadsheets, PowerPoint / presentation tools;
- Strong organizational skills;
- Ability to manage multiple demands and changing priorities.
Advantages:
- Certified Internal Auditor (CIA);
- Certified Information Systems Auditor (CISA);
- Certified in Risk and Information Systems Control (CRISC);
- Certified in the Governance of Enterprise IT (CGEIT);
- Certified Information Systems Security Professional (CISSP).
Why we think you will love working here:
With us you count as a person, our doors are always open.
We live the Qualysoft Team Spirit and stand for transparency!
Fresh wind and new ideas are welcome, because standstill is a foreign word at Qualysoft.
