This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Equities & X Asset Fin Tech solve some of the most interesting and complex problems in the financial industry to help our global business and its customers succeed. Shipping code early and often using Agile and DevOps engineering practices is critical for us to deliver business value, with continuous improvement and learning at the center of everything we do. We are motivated by pushing the boundaries of financial and technological innovation, in an open, inclusive, and diverse environment. Our team in Equities & X Asset Fin Tech runs the Technology Risk & Control practice globally, we partner with engineering teams, our business, product owners and other practices to ensure technology risk is within appetite. Curiosity and a growth mind set for continuous learning are key values within our team. We are globally distributed and well connected as a group, spanning multiple product lines in Equity Derivatives, Prime Finance, Cash Equities and Electronic trading. We are currently seeking a talented professional to join our team as Technology Risk & Control Officer. We are looking for a Technology Risk & Control Officer, based in our Krakow office, to run and grow the practice by assisting engineering teams to manage their risk appropriately, adhering to standards, policies and regulatory requirements. You will form strong relationships with technology teams, business and senior management and you will have opportunities both to implement solutions yourself and lead through influence. You will help us continue the journey of growing the framework of managing information security risk for the department, assisting with governance and ensuring the risks taken are within the apetite of senior management of both business and technology. You will participate in group wide programs and lead your own initiatives for improving the risk position of the department and identifying thematic risks. Leading improvements in existing processes and ways of working is key to the role, enabling consistent small gains to contribute to the evolution of our framework.
Job Responsibility
Run and scale the practice by supporting engineering teams to identify, manage, and mitigate technology risks
Serve as a key liaison between the Control Office and application teams, ensuring clear communication and alignment on control requirements
Lead remediation initiatives, proactively removing blockers and resolving issues to achieve and sustain control compliance
Shape remediation delivery by translating control and regulatory requirements into clear, prioritised, and actionable work items
Build and maintain strong stakeholder relationships across Technology, the business, and senior management to drive timely outcomes and shared accountability
Contribute to broader control enhancements and process automation, improving efficiency, consistency, and overall control effectiveness
Requirements
5 years of relevant risk and control experience and 10 years in total in international companies
Existing experience around the operational risk management framework at an enterprise level (technical software development background is plus)
Excellent communication skills and be comfortable to independently drive projects and communicating to senior stakeholders and internal teams with the ability to range up and down the detail depending on your audience
Being well-organized, paying attention to detail and precision are highly valued for this role
You should have past experience or be ready to start matrix managing within a large team, building good relationships and credibility based on proven delivery
Ideally you already have or you would be keen to achieve industry recognised Information Security certificates (CISSP, CISM, CRISC)
It would be useful for you to have an understanding of software development lifecycles and modern software delivery approaches such as continuous delivery
Nice to have
Ideally you already have or you would be keen to achieve industry recognised Information Security certificates (CISSP, CISM, CRISC)
It would be useful for you to have an understanding of software development lifecycles and modern software delivery approaches such as continuous delivery
What we offer
Additional bonuses for recognition awards
Multisport card
Private medical care
Life insurance
One-time reimbursement of home office set-up (up to 800 PLN)