An IS internal control function is built and appointed in order to check compliance of IS management-related activities in bank and bank’s external service providers, and processes supporting said activities, and IS controls Regulation on Information Systems and Electronic Banking Services of Banks established therefore with the applicable laws and regulations and bank’s internal policies, procedures and standards. An IS internal control supervisor is appointed and IS internal control activities are carried out under responsibility of that supervisor
Job responsibilities
- Sending reports and notifications to the related units and top management for taking actions and making up shortages detected as a result of controls; and
- Sending notices to the related units and top management about process or systematic improvement suggestions understood to be needed as a result of controls; and
- Upon demand, forming opinions about modifications and innovations planned in bank’s products and processes or about bank’s internal policies, procedures and process documents in relation therewith; and
- Attending the meetings of project and working groups, boards and committees related to critical processes within its fields of responsibility, and expressing suggestions aimed to minimize the risk in those meetings; and
- Periodically reporting to top management, audit committee and internal control unit manager in respect of follow-up of risks arising out of IT management and outsourcing for services; and
- Preparing IS internal control inspection plans every year in such manner to indicate the planned and scheduled inspections to be executed next year, and getting approval of bank audit committee therefor.
- support EMEA Regional Cybersecurity and Technology controls team to navigate complex risk landscapes and fortify technology governance, regulatory compliance making a pivotal impact in our firm's robust risk strategy across MENA region
Required qualifications, capabilities, and skills
- Bachelor’s degree or/and 7+ years of experience in an International Bank’s technology risk management, information security, or a related field.
- Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
- Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
- Proficient knowledge of risk management frameworks, regulations, and industry best practices
- Excellent proven problem-solving and troubleshooting skills.
- Good interpersonal and stakeholder management skills.
- Fluent in writing, speaking, and listening in Turkish and English
- Ability to handle multiple issues through channels like intake portal, symphony, and emails.
- Ability to document business processes and flows.
- Ability to work with technology teams to integrate systems into business operations and services.
- General knowledge about Cloud (AWS, Azure, GAIA etc)
Preferred qualifications, capabilities, and skills
- CISM, CRISC, CISSP, or other industry-recognized risk certifications