Company Description
Alter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris.
In 2022, Alter Solutions joined the act digital group, constituting a global community of talent in Technology, with presence in twelve countries: Germany, Belgium, Brazil, Canada, United States of America, Morocco, Spain, France, Luxembourg, Poland, Portugal and Serbia. Also in 2022, we were certified as a Great Place to Work.
In Portugal, we partner with over 120 clients and a team of over 500 people, working in projects for industries as diverse as banking, insurance, transportation, aviation, energy, and telecom.
Headquarters of the Nearshore IT center, Alter Solutions Portugal has a dedicated team of around 30 specialized professionals, integrated into projects with several internationally renowned clients.
Job Description
Main Tasks:
1. Management of the Risk Register:
2. Update regularly IT risks criteria over time (risk category, owner, impact…)
3. Initiate & support the annual review of all IT risks in the Risk Register.
4. Support risk assessment:Organize with relevant stakeholders the assessment/analysis about identified IT risks ( impact, mitigation…)Organize the validation of IT risks assessmentOrganize the compliance with the Risk Management processCollect new risk cards and challenge them with relevant stakeholders ( mitigation suggested).
5. Reporting:Gather feedbacks regarding formalization of risk cards & ongoing mitigation measures from risk ownersFollow KPI defined in risk cards (mitigation, impact…)Perform a reporting about risks and risks mitigation to the top management, raise alerts if neededParticipate to the Business Line Risk committee to share inputs about risks (risks stored in Risk Register, level of risks, impact…).
Qualifications
Technical Skills:
6. Risk monitoring (knowledge in risk management: ability to identify, alert and suggest remediation)
7. Risk analysis (ability to anticipate/analyze threats and create risk scenario) and Risk opinion (ability to challenge, approve and decide (new activities, projects…)
8. Internal audit knowledge (knowledge of the audit process and methodology)
9. IT knowledge (global knowledge of IT, its major processes and assets & solutions) and Cybersecurity (general knowledge in cybersecurity risks, frameworks and requirements)
10. Regulatory (general knowledge in IT and cybersecurity regulators framework) and Compliance (global knowledge of compliance, its major processes or regulatory framework)
Language Skills
11. English: Fluent
Additional Information
Hybrid working model in Porto.