Logo of Huzzle

ICT Risk officer

image

Euronext

13d ago

  • Job
    Full-time
    Junior & Mid Level
  • IT & Cybersecurity
  • Porto
  • Quick Apply

AI generated summary

  • You should have 1-3 years in IT or cybersecurity, entry-level risk knowledge, familiarity with ISO 27001/NIST, and strong analytical skills. English fluency is essential; French is a plus.
  • You will assess ICT risks, maintain risk registers, support mitigation strategies, oversee third-party assessments, review IT measures, coordinate initiatives, and report on risk metrics.

Requirements

  • 1 to 3 years of higher education in IT, cybersecurity, or risk management, or equivalent experience.
  • Entry-level knowledge of IT systems, cybersecurity concepts, and risk management frameworks.
  • Familiarity with standards and best practices such as ISO 27001, NIST, CIS.
  • Understanding of financial regulation (e.g., MIFID, DORA, NIS 2) is a plus.
  • Fluent in English (daily use); French is a nice-to-have.
  • Strong analytical and problem-solving skills.
  • Autonomy, proactivity, and ability to summarize complex information.
  • Excellent communication skills, both written and verbal.

Responsibilities

  • Collaborate with internal stakeholders to identify, assess, and monitor ICT risks, ensuring alignment with company policies and regulatory frameworks (e.g., DORA, ISO 27001).
  • Assist in conducting ICT asset risk assessments, including the evaluation of criticality, exposure, and dependency risks.
  • Support the creation and maintenance of ICT risk registers and dashboards, ensuring accurate documentation and reporting.
  • Contribute to the development and enhancement of ICT risk mitigation strategies and action plans.
  • Participate in change management and project management Risk oversight
  • Participate to LOD2 review on Third Party Risk assessment
  • Participate to development of Operational Risk Indicators
  • Assist in reviewing IT and cybersecurity measures to safeguard ICT assets and operations.
  • Contribute to the development of ICT Risk awareness programs and training initiatives.
  • Act as a junior PMO for ICT risk and resilience initiatives, ensuring tasks are well-coordinated and deadlines are met.
  • Prepare summaries and presentations for ICT risk management activities to share with senior stakeholders.
  • Contribute to periodic reporting on ICT risk posture, incidents, and key metrics.

FAQs

What is the primary focus of the ICT Risk Officer role?

The primary focus of the ICT Risk Officer role is to ensure IT and Cybersecurity resilience across the Euronext group, working closely with various teams to manage ICT risks effectively.

What qualifications are required for the ICT Risk Officer position?

The position requires 1 to 3 years of higher education in IT, cybersecurity, or risk management, or equivalent experience. An entry-level knowledge of IT systems, cybersecurity concepts, and risk management frameworks is also necessary.

Is proficiency in languages other than English required?

Fluent English is required for daily use, and proficiency in French is a nice-to-have.

What types of regulatory frameworks should the candidate be familiar with?

Candidates should be familiar with regulatory frameworks such as DORA, ISO 27001, NIST, and have an understanding of financial regulations like MIFID and NIS 2, which is considered a plus.

What are some of the key accountabilities of the ICT Risk Officer?

Key accountabilities include collaborating with stakeholders to manage ICT risks, assisting in risk assessments, supporting the creation of risk registers, participating in change and project management, and contributing to ICT risk awareness programs.

How does the ICT Risk Officer contribute to reporting?

The ICT Risk Officer acts as a junior PMO for ICT risk and resilience initiatives, prepares summaries for senior stakeholders, and contributes to periodic reporting on ICT risk posture, incidents, and key metrics.

What competencies are necessary for success in this role?

Necessary competencies include strong analytical and problem-solving skills, autonomy, proactivity, excellent communication abilities, and the ability to summarize complex information.

Are there opportunities for growth within the Risk & Compliance department?

Yes, the Risk & Compliance department offers opportunities for professional development and growth, as it encompasses various functions across the organization.

What is the work culture like at Euronext?

Euronext values unity, integrity, agility, energy, and accountability, promoting a collaborative environment where diversity is embraced and mutual respect is paramount.

Is prior experience in cybersecurity required for this role?

While prior experience in cybersecurity is beneficial, entry-level knowledge of cybersecurity concepts is acceptable for candidates with the right educational background and skills.

Finance
Industry
1001-5000
Employees

Mission & Purpose

Euronext is a pan-European stock exchange that operates markets in several countries, including the Netherlands, France, Belgium, and Portugal. It provides a platform for trading in a wide variety of financial instruments, including equities, bonds, derivatives, and ETFs. Their ultimate mission is to connect European economies to global capital markets, fostering growth and innovation. Their purpose is to offer efficient, transparent, and sustainable financial markets that empower companies and investors to make informed decisions and drive economic progress.