London, Hybrid setting of 3 days a week in the office, 2 days WFH.

Contract until end of December 2024

Location Canary Wharf

Key for this role:

• Mind set for Regulatory Projects
• Skills need to cover testing and evidence collection for different regulations as well as Penetration testing, and or Incident management.

The Role

The business analyst will join a program working to ensure that my clients Information, Communications and Technology (ICT) comply with the EU's Digital Operational Resilience Act (DORA). This specific role will focus on the ICT Risk Management workstream, initially being responsible for analysing, testing, and documenting evidence relating to the client's internal governance and control framework and ICT risk management.

Responsibilities:

• Identify and communicate with key stakeholders in risk, compliance, and IT functions.
• Gather, review, and analyse data and key metrics relating to ICT risk and compliance, policies, standards, and procedures.
• Design tests suitable for assessing compliance with DORA requirements.
• Conduct tests and produce high quality evidence of test results with supporting evidence.
• Document business processes and related walk-through commentaries.
• Design target end states to implement remediation as required, including production of use cases, revised or new business processes, business requirements documentation, etc.

Requirements:

• Experience of working with internal controls and best practices relating to information technology risk management.
• Experience of designing and operating test cases for policy and standards compliance.
• Experience of documenting and designing business processes using a defined Business Process Management framework.
• Previous experience of working with internal control frameworks is essential.
• Previous experience of working as a business analyst on programs involving regulatory compliance (eg, Sarbanes-Oxley, UK Corporate Governance Code, etc.), or in the capacity of an audit of IT General Controls, would be beneficial.
• Working knowledge of frameworks such as COSO and/or COBIT is a plus.
• Ability to use Microsoft 365 products to produce extremely high-quality deliverables is a must.

Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.

Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive.