IT Risk Analyst

Join to apply for the Senior IT Risk Analyst role at Ford Motor Company

Join to apply for the Senior IT Risk Analyst role at Ford Motor Company

Get AI-powered advice on this job and more exclusive features.

Job Description

The Senior IT Risk Analyst supports the ICT Risk Manager in the second line of defence, focusing on identifying, assessing, and monitoring IT risks across FCE. This role assists in maintaining the IT Risk Management Framework, conducting risk assessments, and providing oversight to the first line of defence (IT and business units). The Senior IT Risk Analyst will contribute to ensuring FCE’s IT systems and infrastructure are resilient, secure, and compliant with regulatory requirements and industry best practices.

Job Description

The Senior IT Risk Analyst supports the ICT Risk Manager in the second line of defence, focusing on identifying, assessing, and monitoring IT risks across FCE. This role assists in maintaining the IT Risk Management Framework, conducting risk assessments, and providing oversight to the first line of defence (IT and business units). The Senior IT Risk Analyst will contribute to ensuring FCE’s IT systems and infrastructure are resilient, secure, and compliant with regulatory requirements and industry best practices.

Responsibilities

Key Responsibilities:

• IT Risk Management Framework Support:
• Assist in maintaining and updating the organisation's ICT Risk Management Framework (RMF) to align with the information security framework and regulatory requirements.
• Support the implementation of risk management policies, standards, and procedures.
• Risk Monitoring and Reporting:
• Support the monitoring and reporting of IT risk information to the ICT Risk Manager, contributing to reports for the Board and Executive Committee.
• Assist in developing key risk indicators (KRIs) and metrics to track and monitor IT risks.
• Help prepare comprehensive risk reports and presentations for senior management.
• Regulatory Compliance:
• Assist in ensuring compliance with relevant UK and EU regulations and standards (e.g., NIST, DORA, FCA, PRA) and international standards (e.g., ISO 27001, ISO 22301).
• Support the ICT Risk Manager in advising on regulatory requirements and ensuring IT systems and processes meet these standards.
• Second Line Oversight:
• Provide independent second-line oversight and challenge to the first line of defence on various aspects of IT risk management, including:
• IT Service Continuity: Review and assess IT service continuity plans to ensure critical systems can recover from disruptions.
• Third-Party Risk Management: Evaluate risks associated with third-party IT service providers and ensure appropriate due diligence and controls are in place.
• Incident Management: Monitor incident response processes to ensure incidents are managed effectively and lessons learned are implemented.
• Resilience Testing: Support the design and execution of resilience testing activities, including penetration testing, vulnerability assessments, and disaster recovery exercises.
• Intra-group ICT Service Provision: Assist in the oversight of ICT service provision within the group, assessing risks and ensuring appropriate controls are in place.
  
  
• Risk Assessment:
• Conduct regular risk assessments, focusing on critical IT services, third-party dependencies, and business-critical operations.
• Utilise risk assessment methodologies to identify, assess, and report on potential risks.
• Document risk assessment findings and recommendations.
• Stakeholder Management:
• Engage with internal stakeholders, including IT teams and business units, to ensure risk management objectives are understood and executed.
• Support the ICT Risk Manager in communicating with external stakeholders, such as regulators and third-party providers.
  
  
  

• Proven experience in IT risk management, information security, IT audit, or a related field within a financial institution or regulated environment.
• Good understanding of UK, EU, and international resilience regulations and standards, including NIST, DORA, FCA, and PRA guidelines.
• Ability to collaborate with IT teams and business units, providing constructive challenge and advice on IT risk management.
• Strong communication, presentation, and report writing skills.
• Analytical and problem-solving skills, with the ability to identify and assess risks and develop mitigation strategies.
• Experience with risk management frameworks and methodologies (e.g., COSO, NIST).
  
  
  

• Experience working in a regulated financial services environment.
• Experience with cloud computing and related security risks.
• Professional qualifications such as CISM, CRISC, or similar are desirable.
• Experience with data security and privacy regulations (e.g., GDPR).
  
  
  

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  Motor Vehicle Manufacturing

Referrals increase your chances of interviewing at Ford Motor Company by 2x

Get notified about new Senior Information Technology Analyst jobs in Essex, England, United Kingdom.

Colchester, England, United Kingdom 1 month ago

Colchester, England, United Kingdom 4 days ago

Chelmsford, England, United Kingdom 3 weeks ago

Basildon, England, United Kingdom 3 weeks ago

Basildon, England, United Kingdom 1 week ago

Chelmsford, England, United Kingdom 7 hours ago

Chelmsford, England, United Kingdom 1 month ago

Colchester, England, United Kingdom 1 month ago

Basildon, England, United Kingdom 2 weeks ago

Billericay, England, United Kingdom 2 weeks ago

Harlow, England, United Kingdom 5 days ago

Basildon, England, United Kingdom 1 week ago

Waltham Abbey, England, United Kingdom 2 months ago

Basildon, England, United Kingdom 1 week ago

Harlow, England, United Kingdom 1 week ago

Colchester, England, United Kingdom 4 days ago

Harlow, England, United Kingdom 2 weeks ago

Saffron Walden, England, United Kingdom 1 month ago

Chelmsford, England, United Kingdom 7 months ago

Basildon, England, United Kingdom 2 weeks ago

Basildon, England, United Kingdom 4 weeks ago

Harwich, England, United Kingdom 5 days ago

Harwich, England, United Kingdom 5 days ago

Basildon, England, United Kingdom 1 week ago

Loughton, England, United Kingdom 4 months ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.