IT Risk & Compliance Specialist

Mission Statement:

As Risk & Compliance Specialist, your mission is to keep Information Technology risks and compliance issues away from Hitachi Energy. To accomplish this mission, you will liaise with internal customers and subject matter experts across the company. You will be responsible to govern IT risk and compliance actions portfolio and steer IT departments risk exposure optimization. You will contribute to ensuring proper data protection and IT risk governance for the company.

Your Responsibilities:

• Act as champion for specific IT risk and compliance categories in regulatory, operational, etc.
• Facilitate IT risk and compliance actions portfolio reviews with internal customers and experts.
• Ensure prompt completion of all agreed actions needed for the risk exposure optimization.
• Maintain actions portfolio related documentation in risk register, meeting minutes & task log
• Support internal customers in data collection, risk analysis, control activities & risk response.
• Manage continuous improvements of the IT risk and compliance management framework.
• Drive efforts to enable process automation (e.g. automated controls, data quality assurance).
• Review and prioritize risk assessment requests, control attestations and indicator results.
• Living Hitachi Energy's core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business.

Want more jobs like this?

Get jobs delivered to your inbox every week.

Select a location

Get Jobs

Send me The Muse newsletters for the best in career advice and job search tips.

By signing up, you agree to our Terms of Service & Privacy Policy.

• Bachelor's or Master's degree in Information Management Systems or Business Administration.
• 5+ years of working experience in areas of IT Risk Management, IT Audit, Compliance.
• Comprehensive understanding of Unified Control Framework (UCF) with regards to IT related controls.
• Working knowledge of ServiceNow Integrated Risk Management (IRM / GRC) applications.
• Familiarity with data protection and risk management best practices, laws and regulations.
• Ability to assess Information Technology risks together with cross-functional teams.
• Ability to communicate effectively with technical and non-technical audiences.
• Proficiency in both spoken & written English language is required.