Area

We are looking for a new colleague to join the “IT, Security & Data Risk” team within the second line of defence (“2LoD”) function at Danske Bank. A key component of this role involves building and maintaining IT & Security risk monitoring and oversight. Would you like to join us as a chief risk expert on our journey towards becoming a better bank?

You will be responsible for monitoring and overseeing the “IT & Security Risk” type, as well as communicating with stakeholders on the ongoing work throughout the bank related to IT and security risk management. This role offers a wealth of opportunities to assist in evolving this domain within 2LoD.

Our work focuses on 2LoD risk management responsibilities. We aim to meet the requirements of our customers and society and adhere to regulatory requirements. By establishing a robust risk culture, we create trust, maintain integrity, and lay the foundation to become our customers’ preferred financial partner.

Your role is an integral part of Non-Financial Risk (NFR), a unit within Group Risk Management (GRM). In NFR, we ensure alignment and consistency within risk frameworks and policies. As a financial institution in a multifaceted environment, we face a range of both external and internal risks. Compliance and risk management are our core business.

You will support the development and maintenance of IT & Security risk monitoring and oversight for the Danske Bank Group, working with other relevant stakeholders in NFR and GRM, which form the basis for risk management from a 2LoD perspective.

To succeed in this role, it is vital that you understand IT & Security risk management principles and have the ability to apply these skills in day-to-day work to solve problems and help scale the risk oversight area.

Depending on your experience, you may be offered a different seniority of the role.

Mission

• Review and challenge Risk & Control Self-Assessments (RCSA) for IT & Security risks
• Review and challenge New & Amended Product Approvals (NAPA) for IT & Security risks
• Understand and provide guidance within IT & Security risk management
• Work closely with stakeholders across the organisation to promote a culture of risk awareness and compliance
• Support and advise other business units and risk functions on controls, risk, and governance practices concerning IT & Security risk management
• Review the design, implementation, and operational effectiveness of key IT & Security controls
• Challenge the set-up and ensure continuous improvements of our risk management practices, focusing on IT & Security risk management

Skills

• Relevant university degree or equivalent, e.g., within technology domains
• Experience with principles of IT & Security Risk Management
• 7+ years’ experience in a similar role, or alternatively, a relevant role providing you with solid understanding and insights
• Knowledge of regulatory requirements and frameworks such as DORA, EBA Guidelines, Executive Order on Management and Control of Banks, and ISF Standard of Good Practice for Information Security
• Advanced English skills, both spoken and written
• Relevant certifications such as CRISC, CISA, CISM, or CISSP would be beneficial

We offer:

We will ensure that exact salary offered for you will be based on your qualifications, competencies, professional experience and requirements for the corresponding job function (salary range from 4000 EUR to 6000 EUR gross EUR/monthly).

Your title in job contract will be Specialist – Risk, Chief.