Cloud Risk and Controls Analyst - GCP

Cloud Risk and Controls Analyst - GCP

Posted 5 days ago by Synechron on JobServe

Negotiable
Undetermined
Onsite
London, UK
p>A leading financial services institution is looking for a Risk & Controls Analyst to join a global cloud services certification programme. Working directly with Engineers, the role covers Workloads where there are country or workload specific requirements such as payments. (The role does not involve technical architecture or coding).

Job Location: Belfast & London (Hybrid)

Role:

  • Translating policy requirements to technical requirements
  • Translating regulatory requirements to technical requirements
  • Review residual risk for findings and issues through engineering processes
  • Balance business priorities vs risk to firm (Blockers vs acceptable based on historic audit issues)
  • Document MVP with key mandatory controls
  • Follow up and track corrective action plans for issues that need to be resolved
  • Running risk acceptance process
  • Reviewing architectural RFI/RFPs
  • Regulatory and IA engagement will follow later once team has been fully Embedded
  • Evaluating efficacy, validity and sustainability of controls (eg no manual)

Requirement:

  • Mandatory experience on GCP
  • Experience in Technology Risk & Controls in a large organisation in a heavily regulated industry
  • Experience in one of the following: AWS, GCP, Azure
  • Ability to explain concepts consistently to stakeholders, including non-technical audiences and communicate requirements and position of Policy
  • Experience developing and implementing strategy and process improvement initiatives
  • Ability to influence change and common-sense approaches to modern risk complexity
  • Strong collaboration and interpersonal skills

Preferred Qualifications:

  • Risk certifications such as the CIA, CISSP, CISA, CRISC, CGEIT, CDPSE, etc.
  • Certifications in Public Cloud such as AWS Certified Cloud Practitioner, or AWS Certified Security Specialty
  • Experience working with NIST, COBIT, ITIL, CSA, and/or ISO risk and ITSM frameworks
  • Familiarity with DevOps and SRE practices
  • Experience with cloud infrastructure and data services (compute, storage, networking and others)

Benefits Include (not limited to):

Competitive compensation/Hybrid working/Immediate start available

Diversity Statement

Synechron are proud to be an equal opportunity employer. Our Diversity, Equity, and Inclusion (DEI) initiative Same Difference' is committed to fostering an inclusive culture - promoting equality, diversity and an environment that is respectful to all. We encourage applicants from across diverse backgrounds, race, ethnicities, religion, age, marital status, gender, sexual orientations, or disabilities to apply. We offer flexible workplace arrangements, mentoring, internal mobility, learning and development programmes to support our global workforce. Empowerment and collaboration are at the core of how we operate.

All employment decisions at Synechron are based on business needs, job requirements and individual qualifications, without regard to the applicant's gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.