PM: SMEs for CIF and Third-Party ICT Risk Mgmt

• 8 years of Project Management experience
• Ability to drive process analysis/mapping exercises and identify pain points in current processes
• Ability to find solutions based on pain points and drive process implementation, including documentation (e.g., SOP creation)
• Superior proficiency in developing PowerPoint and decision materials
• Standard proficiency in Excel and financial planning
• Risk and/or Project Management certifications (e.g., SAFe, Prince2, ISACA, CISSP, CRISC)
• Superior level of English
• Ability to handle conflicting opinions from different departments and reach agreement
• Ability to prioritize tasks and manage time effectively to meet deadlines

Nice to have:

• Experience using SharePoint, Confluence, Teams, JIRA, PPM tools
• Experience with regulatory implementations and/or Business Architecture
• Understanding of DORA regulation and hands-on experience with related processes
• Ability to analyze data-related issues and develop effective solutions
• Strong attention to detail to ensure data accuracy and quality
• Understanding of data management principles, practices, and technologies
• Familiarity with data analysis and visualization tools such as Excel, SQL, PowerBI
• Knowledge of data governance and quality principles, including data validation, cleansing, and normalization according to ITS requirements on the Information Register

• Responsible for maturing the Third-Party ICT Risk Management controls in accordance with industry standards and relevant regulations
• Support with maturing the mapping of Business Products and Services to processes, ICT applications, and Third-Party ICT Service providers
• Support with enhancing Business Impact Assessments and carrying them out with stakeholders across the bank
• Outline decision requests for steering committees and/or applicable governance forums
• Conduct an assessment on the bank's ICT controls to ensure they fulfill industry standards and embed all relevant regulatory requirements in the control library
• Drive process design and implementation activities related to Third-Party ICT risk management processes
• Support with establishing a new resilience strategy

Location: Gdańsk, Gdynia, Warsaw, and Łódź Hybrid work mode: 3 days per week from the office All locations in Poland can be considered for this position.