Manager of IT Risk Management Division

The Manager of IT Risk Management Division plays a key role in identifying, assessing, and monitoring technology risks across Birbank’s IT landscape. The position supports the Head of IT Risk Division in maintaining the IT risk register, conducting risk assessments, preparing analytical reports, and ensuring compliance with internal standards and regulatory requirements.

·       Bachelor’s or Master’s degree in Computer Science, Information Security, or Engineering;

·       Minimum 5 years of experience in IT governance, information security governance, or related roles, preferably within the banking or financial services sector;

Strong understanding of IT risk management frameworks and international standards such as ISO/IEC 27001, NIST CSF 2.0, COBIT, PCI DSS, or CMMC;

Professional certifications such as CRISC, CISM, CISSP, CISA, or equivalent;

·       Experience with risk registers, control testing, and audit support processes;

·       Familiarity with Basel principles and Central Bank regulations is an advantage;

·       Strong analytical and reporting skills, with attention to detail;

·       Effective communication skills, able to present technical findings to non-technical audiences;

·       Ability to work independently, manage multiple tasks, and contribute to team-wide initiatives;

Preferred Experience

·       Using GRC tools

·       Building KRI dashboards or risk visualization in tools like Power BI or Grafana.

·       Experience in incident post-mortem analysis and root-cause documentation.

• Opportunities for professional growth and development
• Competitive salary and bonuses
• Comprehensive insurance coverage
• Supportive work environment
• Visa Premium salary card
• Corporate discounts and events
• Additional vacation days
• Discounted education and employee loans
• New cozy studio office in Port Baku Tower 2
• Strong teamwork with Agile principles, regular team buildings and themed events
• Multicultural environment with foreign colleagues sharing their best experiences.

·       Participate in the identification, evaluation, and tracking of IT risks, ensuring accurate registration and updates in the IT Risk Register;

·       Perform risk assessments for new projects, initiatives, and change requests, highlighting potential technology, cybersecurity, and operational risks;

·       Conduct scenario-based risk analysis (e.g., system downtime, data integrity loss, control failures);

·       Support control testing and assurance activities in coordination with IT and Information Security teams;

·       Prepare periodic risk dashboards and reports for senior management and risk committees;

·       Monitor compliance with CBAR and internal regulatory requirements, supporting audits and inspections;

·       Assist in the maintenance of IT risk policies, procedures, and control matrices;

·       Support review of risk indicators (KRIs) and report emerging technology risks;

·       Collaborate with architecture, infrastructure, and DevSecOps teams to identify residual and systemic risks in IT processes;

·       Contribute to improvement projects (automation, metrics dashboards, and risk documentation standardization).

Vakansiyalardan daha tez xəbərdar olmaq üçün Telegram kanalımıza abunə olun!