Governance, Risk

2 tygodni temu

Warszawa, Mazovia, Polska Shein E-Commerce Co. Ltd. Pełny etat

SHEIN Global Security & Risk Management is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.

Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.

The GRC Analyst, a thought leader residing within our security organization, is responsible for implementing and maintaining the risk management framework and program as well as interfacing with business stakeholders to provide security services and solicit business requirements. This position will be part of a team of governance, risk, and compliance experts and work with technology and legal partners and business units to meet our global risk management needs.

The ideal candidate should have experience in deploying and maturing risk management frameworks and programs, a good understanding of general security technologies and best practices, and knowledge of global data privacy laws and regulations. This role must collaborate effectively with development, engineering and operations counterparts as well as internal and external partners to identify, articulate, prioritize, manage, and monitor security risks to protect SHEIN data, services, and information assets.

Core Responsibilities:

Interface with business stakeholders to understand business needs and promote and deliver services in the security services catalog.

Conduct security risk assessments of business processes, projects, business units, systems, and data.

Conduct third-party risk assessments and security reviews of third-party agreements.

Work closely with technology and legal partners and business units to ensure appropriate security and data protection requirements are incorporated into third-party engagements.

Prepare risk assessment reports to inform risk treatment decisions.

Track and monitor remediation and risk management activities.

Support security and privacy awareness & training initiatives in Poland and the EU region

Deploy the risk management framework, processes, and tools to conduct risk assessments effectively and consistently.

Develop, implement, mature, and champion risk management processes and concepts.

Maintain a current and comprehensive understanding of relevant industry standards to incorporate into the risk management strategy, framework, and program.

Support integration and maturation of policy, compliance, and risk frameworks.

Skills and Qualifications:

A minimum of 5 years of experience in information security risk management, including business impact analysis, risk assessment and treatment, risk metrics and trend analysis

Possess a bachelor's degree or higher in the field of information security, engineering, computer science or equivalent advance technology field of study

Relevant security certifications, such as CISSP, CISM, CISA, ISO 27001 Lead Auditor are highly desired

Strong knowledge of security and data privacy standards, regulations and guidelines such as ISO 27k, NIST, CIS, LGPD, GDPR, CCPA, PCI DSS

Practical knowledge and experience working with threat modeling frameworks such as STRIDE, MITRE ATT&CK, OCTAVE

Experience developing and deploying risk management frameworks and programs, preferably with international experience in an e-commerce or technology related industry

Experience with deploying GRC tools is desirable

Strong analytical and problem-solving skills

Strong written and verbal communication skills, with the ability to translate complex and technical issues to all levels of personnel

Detail oriented and highly organized, with the ability to thrive in a fast-paced environment and prioritize accordingly

High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.

#J-18808-Ljbffr

  • Information Security Governance, Risk and Compliance Specialist

    2 tygodni temu

    Warszawa, Mazovia, Polska Sportradar Pełny etat

    Information Security Governance, Risk and Compliance SpecialistWe're the world's leading sports technology company, at the intersection between sports, media, and betting. More than 1,700 sports federations, media outlets, betting operators, and consumer platforms across 120 countries rely on our know-how and technology to boost their business.Job...

  • Senior/Lead Risk Expert on Internal Models Governance and Regulatory Aspects

    2 tygodni temu

    Warszawa, Mazovia, Polska Nordea Bank Pełny etat

    Job ID: 24727 We are looking for a Senior/Lead Risk Expert to join a high performing unit that is recognized or its professionalism, competence and capacity. The job provides a chance to work with highly skilled professionals on an exciting mix of regulatory and governance tasks pertaining to the IRB Approach of the largest bank in the Nordics. At...

  • Lawyer/Legal Specialist, Governance

    2 tygodni temu

    Warszawa, Mazovia, Polska ClientEarth Pełny etat

    The Lawyer*, Governance & Legal Services will join ClientEarth's global Governance & Legal Services Department (G&LS). The global G&LS Department is an in-house legal team driven to enable ClientEarth to deliver innovative legal strategies while managing risk and legal compliance in a manner consistent with our organisational values. You will be part of,...

  • MRM Governance Officer

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    This role offers the successful candidate the opportunity to play a significant role in the firmwide legal entity model risk framework team, reporting into the Global Model Risk Management (MRM) function within Citi. Responsibilities associated with the role include: Ongoing review of the regulatory landscape pertaining to model risk, assessment of...

  • Regulatory Risk Analyst

    1 miesiąc temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team supports Risk Cluster heads and Risk Management Country Officers (RMCOs) in standardizing processes to enhance productivity, governance, control activities, and strategic execution. The team also assists the International Risk Head, who oversees risks within the global landscape and collaborates with...

  • Regulatory Risk Analyst

    4 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team supports Risk Cluster heads and Risk Management Country Officers (RMCOs) in standardizing processes to enhance productivity, governance, control activities, and strategic execution. The team also assists the International Risk Head, who oversees risks within the global landscape and collaborates with...

  • MRM Governance Officer

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    This role offers the successful candidate the opportunity to play a significant role in the firmwide legal entity model risk framework team, reporting into the Global Model Risk Management (MRM) function within Citi. Responsibilities associated with the role include:Ongoing review of the regulatory landscape pertaining to model risk, assessment of compliance...

  • Senior/Lead Risk Expert on Internal Models Governance and Regulatory Aspects

    5 dni temu

    Warszawa, Mazovia, Polska Nordea Bank Pełny etat

    Job ID: 24727 We are looking for a Senior/Lead Risk Expert to join a high performing unit that is recognized or its professionalism, competence and capacity. The job provides a chance to work with highly skilled professionals on an exciting mix of regulatory and governance tasks pertaining to the IRB Approach of the largest bank in the Nordics.At Nordea,...

  • Tech Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    WHO WE ARE Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts,...

  • Business Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Citi Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in Identifying Risk, Problem solving and communication to Citi's Institutional Client Management (ICM) function within Citi's Client organization. By Joining Citi, you will become part of a global organisation whose mission is to serve...

  • Regulatory Risk Officer

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    The International Risk Management Execution Team provides crucial support to Risk Cluster heads and Risk Management Country Officers on processes standardization to enhance productivity, governance, and control activities, as well as hands-on strategic execution. The team also assists the International Risk Head in interfacing across all risks within the...

  • Regulatory Risk Analyst

    4 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    4 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Business Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in Identifying Risk, Problem solving and communication to Citi's Institutional Client Management (ICM) function within Citi's Client organization.By Joining Citi, you will become part of a global organisation whose mission is to serve as...

  • Business Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in Identifying Risk, Problem solving and communication to Citi's Institutional Client Management (ICM) function within Citi's Client organization. By Joining Citi, you will become part of a global organisation whose mission is to serve...

  • Business Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in Identifying Risk, Problem solving and communication to Citi's Institutional Client Management (ICM) function within Citi's Client organization.By Joining Citi, you will become part of a global organisation whose mission is to serve as...

  • Governance Risk and Compliance Specialist

    2 tygodni temu

    Warszawa, Mazovia, Polska Sonova Group Pełny etat

    Select how often (in days) to receive an alert: You enjoy creating and innovating. You never stop striving for better. You take responsibility and you get results. You love being part of a team. Above all, you want your work to matter: Welcome to our world At Sonova we create sense by bringing sound to life. Our innovative hearing care solutions help...

  • Regulatory Risk Officer

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...