Cyber Security Analyst
Job Title : GRC Analyst
Location : Frankfurt, Germany
Department : Risk & Compliance
Reports To : Head of Risk & Compliance
Job Summary
The GRC Analyst will support the organization in identifying, assessing, monitoring, and reporting on risks, compliance obligations, and governance structures.
This role involves working closely with various departments to ensure that the company operates within the regulatory framework while managing risks effectively.
The ideal candidate will have a strong understanding of financial services regulations, risk management practices, and governance principles.
Key Responsibilities
Risk Management
- Assist in the development and implementation of risk management frameworks and policies.
- Identify and assess potential risks that could affect the company’s operations and financial performance.
- Monitor risk indicators and escalate significant risks to senior management.
- Perform risk assessments and scenario analysis to evaluate the potential impact on the business.
- Collaborate with internal stakeholders to develop risk mitigation strategies.
Compliance
Ensure the company adheres to all relevant local, national, and international regulations, particularly those related to financial services (e.
g., MiFID II, GDPR, AML, Basel III).
- Conduct regular compliance audits and reviews to ensure adherence to internal policies and regulatory requirements.
- Maintain and update the compliance risk register.
- Prepare and submit regulatory reports and filings as required.
- Provide training and support to employees on compliance-related matters.
Governance
- Support the development and maintenance of the company's governance, risk, and compliance frameworks.
- Assist in the creation and maintenance of governance policies and procedures.
- Facilitate regular reviews of governance structures and practices to ensure they remain effective and aligned with best practices.
- Coordinate with the Board of Directors and senior management to ensure proper governance oversight.
Reporting
- Prepare detailed reports on risk management, compliance, and governance activities for senior management and the Board of Directors.
- Develop and maintain dashboards to track key risk and compliance metrics.
- Assist in the preparation of reports required by regulators or auditors.
Internal Collaboration
- Work closely with departments such as Legal, Internal Audit, and IT to ensure a cohesive approach to GRC activities.
- Provide guidance and support to business units on risk management and compliance issues.
- Participate in cross-functional projects related to GRC initiatives.
Continuous Improvement
- Stay up to date with industry trends, regulatory changes, and best practices in governance, risk, and compliance.
- Recommend and implement improvements to the GRC processes to enhance efficiency and effectiveness.
Qualifications
Education
Bachelor’s degree in Finance, Business Administration, Law, or a related field. A master’s degree or relevant certifications (e.
g., CRISC, CISM, CISA, CAMS) are advantageous.
Experience
3-5 years of experience in a GRC role, preferably within the financial services industry.
Knowledge
- Strong understanding of financial services regulations in Germany and the EU.
- Familiarity with risk management principles and frameworks (e.g., COSO, ISO 31000).
- Knowledge of governance best practices.
Skills
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to influence stakeholders.
- Proficiency in GRC software and tools.
- Strong attention to detail and organizational skills.
Languages
Fluent in German and English, both written and spoken.
Additional Requirements
- Ability to work independently and as part of a team.
- Strong ethical standards and integrity.
- Willingness to continuously learn and adapt to new challenges.
Benefits
- Competitive salary and bonus structure.
- Comprehensive benefits package, including health insurance, pension plans, and professional development opportunities.
- Flexible working arrangements and a supportive work environment.