Senior Technology Risk Analyst

Job Summary:

As a Senior Technology Risk Analyst, you will support the Tech Risk Manager in all risk & compliance related activities for SPH Media Technology division. You will work with our stakeholders (the Heads and nominated Subject Matter Experts across the Technology Division) and Cybersecurity team to manage all IT risks and support process improvement activities.

Job Description:

• Supporting stakeholders in understanding the risk process and risk assessment criteria.
• Working with key stakeholders to establish compliance with policies & standards, ensuring that identified risks and gaps are adequately addressed and remediated.
• Continuously evaluate risk mitigation measures to ensure effectiveness, compliance and adherence to key controls and policies and to support teams on the remediation efforts.
• Maintaining the division’s risk register.
• Working with stakeholders to update the risk register to add new risks and ensure existing risks stay relevant tracking and updating risk mitigation & remediation action plans.
• Managing the policy waiver/exception process.
• Preparing regular reports on risks, action plans and waiver/exception status.
• Compiling and analysing risk data to prepare graphs and dashboards for management.
• Supporting the Tech Risk Manager in risk meetings within Tech and with the organisation’s risk department.
• Supporting the Tech Risk Manager in the roll out of Risk & Compliance tool for the organisation.
• Supporting process improvement activities, including creating and updating process documents, especially in SDLC and IT policy areas.
• Collaborate with internal and external audit teams, to manage and effect audits from a compliance & point-in-time perspective, to a risk-driven, continuous proactive compliance approach.
• Participate in the review and refinement of cybersecurity policies, standards, processes, procedures and guidelines in accordance with cybersecurity best practices.