Job Title: GRC Specialist
Job Descriptions
- Monitor status of risks, and reports status and need for action to senior colleagues.
- Demonstrate financial awareness as a part of risk management (e.g., cost-effectiveness analysis of proposed counter measures).
- Assist with development of agreed countermeasures and contingency plans.
- Collect and collate evidence as part of formally conducted and planned reviews of activities, processes, products, or services, including information and communications technology applications.
- Examine records as part of specified testing strategies for evidence of compliance with management directives, or the identification of abnormal occurrences.
- Compare records with expectations arising from the procedures, requirements and/or standards governing the work.
- Analyze evidence collated and draft's part, or all formal reports commenting on the conformance found to exist in the reviewed part of an information systems environment.
- Contribute to the collection of evidence and the conduct of formal audits or reviews of activities, processes, data, products, or services.
- Examine records for evidence that appropriate testing and other quality control activities have taken place and determines compliance with organizational directives, standards and procedures. Inputs findings to compliance reports.
- Identify non-compliances, non-conformances and abnormal occurrences, and inputs findings to compliance reports.
Mandatory Requirements
- Minimum bachelor's degree level or holds a relevant professional qualification or relevant experience (typically at least 6 years) in a techno management ITSM service management role with widespread knowledge of IT.
- Educated to bachelor's degree level, holds a relevant professional qualification, and may have a postgraduate qualification such as an MSc, MBA, or other appropriate business, engineering, scientific or industry qualification.
- Have knowledge and experience as below:
- a. Applying specific quality standards to all tasks undertaken to ensure that deliverables areaccurate and complete.
- b. Principles, practices, tools, and techniques of IT auditing.
- c. Methods and techniques for reporting progress and financial conformance against an agreed plan.
- Have technical and business skills as below:
- a. Communicate well, both orally and in writing, and has the skill to influence through persuasion in a formal context.
- Has a good overall knowledge of wide areas of information systems practice and applications. Understands the need to maintain a practical and pragmatic approach to standards compliance
- b. Applying standards, practices, codes, and assessment and certification programs relevant to the IT industry and the specific organization or business domain.
- c. The system or method for the management of quality within the employing organization's IT practices, including quality planning, assurance, and control.
Skills: service management,reporting progress,techniques,principles,financial conformance,itsm,it auditing,it,standards,tools,practices
