|
SERVICE LINE | 咨询
| AREA
| 数据咨询 | LOCATION
| 北京 | JOB TITLE
| 顾问 - 信息科技风险/合规管理 |
Responsibilities 基于毕马威在领先金融机构的成功经验和成熟方法论/工具,为国内金融机构(银行为主)提供以下信息科技风险/合规管理的服务数据管理能力提升及应用: · 理解金融机构的业务流程和信息系统现状,从信息科技风险/合规管理的视角评估机构所面临的风险以及相应的管控措施,涵盖管理框架、政策、标准、程序以及信息系统等领域,识别存在的问题和差距,并提出改进建议 · 理解客户对于信息科技风险管理发展的需要,协助客户建立信息科技风险管理框架、配套管理流程、手册和工具模板,实现充分知识转移 · 信息科技风险管理的具体领域涵盖信息科技治理、信息安全管理、系统开发及项目管理、系统运维及服务管理、业务连续性管理、外包管理等,可协助客户进行综合管理体系评估和建设,同时也可协助客户进行专项领域评估和建设 · 协助客户进行相关风险和合规管理系统的功能需求分析以满足信息科技风险/合规管理的业务需求,熟练编写《业务需求分析说明书》、《系统功能性说明书》、《系统设计方案》等分析与设计文档 Requirements · 1-3年四大、国内事务所或者系统服务商相关工作经验 · 理解监管机构在信息科技风险/合规管理方面的监管指引 · 了解信息科技风险评估和管理的业界标准和框架,例如CoBIT、ISO27000、ITIL、CMMi等 · 拥有银行或其他金融机构的信息科技风险项目相关经验 · 拥有银行或其他金融机构的系统设计与实施相关经验 · 理解技术解决方案和软硬件,能够设计并实施系统解决方案,熟悉UNIX(AIX、Solaris、HP_UX)、Linux、Windows操作系统; SQL语言、Java、CORBA 、Perl、Shell等编程语言 · 拥有良好的团队技能 · 拥有良好的沟通技能,尤其是在项目推进、文档写作方面得以体现 · 接受适当比例出差
SERVICE LINE | Advisory
| AREA
| Digital Advisory | LOCATION
| Beijing | JOB TITLE
| Consultant - Information Technology Risk/Compliance Management |
Responsibilities Based on KPMG’s existing credentials and mature solutions in leading banks, provide below IT risk and compliance management services to domestic commercial banks: · Understanding of financial institution service processes and information systems, assess risk and measures from IT risk/compliance management perspective, including management frameworks, policies, standards, procedures, IT system and other areas, recognize existing problems and gaps, and give recommendations for improvement · Understand IT risk development need of clients, help them establish IT risk management frameworks, processes, handbooks and tool models, and realize comprehensive knowledge transfer · IT risk management specific areas cover IT governance, IT security management, system development, project management, system operation and maintenance management, business continuance management, and outsourcing management. Help client assess and construct comprehensive management system as well as specific areas · Help clients analyze system functional requirement in risk and compliance management to satisfy their need for IT risk/compliance management business requirement, and prepare ‘Business Requirement Analysis document’, ‘System Functional Specifications’, ‘System Design Solutions’, etc. Requirements · 1-3 years of relevant experience as IT auditors and internal controllers from Big 4 firms, local firms or system service vendors · Understanding of regulator’s supervision guidance in IT risk/compliance management · Understanding of the industry standard and framework of IT risk assessment and management, such as CoBIT、ISO27000、ITIL、CMMi · Experienced in FS(banking or other financial institution) IT risk projects · Experienced in FS(banking or other financial institution) system design and implementation · Understand technical solution and software/hardware, have the capability of system solution design and implementation, and understand UNIX(AIX、Solaris、HP_UX)、Linux、Window systems as well as SQL、Java、CORBA 、Perl、Shell software · Good team skills · Good communication skills, especially related to facilitation, documentation · Accept a reasonable portion of travelling
欢迎招聘ITIL、ISO20000、ITSM、IT服务管理、IT运维管理、IT运维的公司HR联系我,提供ITIL招聘、ITIL求职、ITIL咨询顾问、IT服务人才交流免费发帖。QQ:48153151或加全国IT求职招聘群:146999050
不想错过高端求职信息?关注我们的微信吧!微信公众号:itilxf_ (注意有个下划线的)
圈子决定你的未来,关注IT高端精英圈,人脉+知识+资讯,尽在你掌握!
| 
转播
分享
淘帖
()