IT Compliance & Risk Manager

COMPANY DESCRIPTION About BW Group BW Group is a leading global maritime company involved in shipping, floating infrastructure, deepwater oil & gas production, and new sustainable technologies. Founded in 1955 by Sir YK Pao, BW controls a fleet of over 450 vessels transporting oil, gas and dry commodities, with its 200 LNG and LPG ships constituting the largest gas fleet in the world. In the renewables space, the group has investments in solar, wind, batteries, and water treatment. BW is proud to be listed as one of Forbes World’s Best Employers 2023. Are you ready to make an impact? What drives us is our mission to deliver energy for the world today, and to find solutions for tomorrow. If you want to make lives better around the world by providing access to energy, while working on sustainability and decarbonisation, we’d like to hear from you. Working at BW you will feel the pulse of the world each day. If something happens in the world, we feel it, and you can play your part by anticipating and responding to it. Our high-performing teams are drawn to BW by the global nature of our work and the satisfaction of working with collaborative people who inspire each other to deliver exceptional results. RESPONSIBILITIES We are seeking a highly skilled and experienced IT Compliance and Cyber Risk Manager to join our dynamic IT team. This role is crucial in ensuring our IT operations comply with IT general controls, SOX controls, and other regulatory requirements. Additionally, the manager will lead our Cyber Risk Quantification Program, identifying and mitigating cyber risks to protect our company’s assets and reputation. Responsibilities: Compliance Management: Ensure all IT operations comply with IT general controls, SOX controls, and other relevant frameworks the company chose to comply with (e.g. NIST CSF, CERT RMM). Develop, implement, and maintain IT compliance methodology, policies and procedures. Work with your IT colleagues to ensure compliance with internal and external standards. Lead regular assessments with the IT organization. Collaborate with internal and external auditors to facilitate compliance audits and address findings. IT-Risk Management: Manage the internal Cyber Risk Quantification Program with the company tools to identify, assess, and quantify cyber risks. Monitor and report on the effectiveness of IT risk management initiatives. Stay updated on the latest IT Risks, cyber threats and vulnerabilities. Policy and Procedure Development: Develop and maintain IT compliance and cyber risk management policies and procedures. Ensure policies and procedures are communicated effectively to all relevant stakeholders. Provide training and guidance to IT staff on compliance and risk management best practices. Collaboration and Communication: Work closely with other departments to ensure a cohesive approach to IT compliance and cyber risk management. Communicate effectively with senior management, providing regular updates on compliance status and IT-Risk management activities. Serve as the primary point of contact for IT compliance and risk management issues. QUALIFICATIONS Bachelor’s degree in Information Technology, Computer Science, or a related field. Minimum of 5 years of experience in IT compliance, ITGC and/or SOX controls, and IT risk management. Strong knowledge of IT general controls, frameworks, and regulatory requirements. Experience with IT risk quantification and mitigation strategies. Excellent analytical, problem-solving, and communication skills. Relevant certifications such as CISA, CISSP, CRISC, or similar are highly desirable. Strong communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels. Ability to manage multiple tasks and deadlines in a fast-paced environment. Eager Learner: Has a strong willingness to learn new things and continuously seeks to improve their skills and knowledge. Team Player: Works well in a team and contributes to a positive team environment. Problem Solver: Demonstrates strong problem-solving skills, with the ability to think critically and find creative solutions to challenges. Detail-Oriented: Pays close attention to detail and has a strong commitment to quality. Adaptable: Is flexible, can quickly adapt to new situations and changes in project scope or direction, understand the needs of peers and contribute to a professional and enjoyable work environment. #J-18808-Ljbffr