ICT Risk Oversight Specialist(m/w/x)

**Your area of work** The ICT risk management control function plays a pivotal role in safeguarding our organization against technological and information security risks. We partner closely with product, technology, security, and risk teams to ensure the resilience of our systems and services. We actively manage technology risks, steer ICT risk governance and framework design, perform focused risk assurance, and enable compliance for legal entities, branches, and representative offices in scope with direct reporting line to the corresponding executive boards. **Your responsibilities** * Monitor technology and security risks, providing independent oversight, and challenging the first line of defense when necessary. * Assist in developing, implementing and maintaining a DORA-complaint ICT Risk oversight program while working closely with ICT Risk Governance, ICT Risk Assurance, and other relevant teams. * Support the oversight of digital operational resilience posture and advise on necessary technology risk control requirements. Stay updated with emerging trends and align these with organizational plans. * Work with relevant functions across the three lines of defense to gather digital resilience requirements, ensure alignment, and meet compliance expectations. Offer insights from a technology risk perspective on key digital transformation initiatives, resilience testing, ICT third party supplier risk, and other key areas. Assist in aligning digital operational resilience with strategic goals. Provide recommendations based on evolving threats, risk appetite, business strategy, and regulatory changes. * Define, monitor, and report on risk metrics and key performance indicators. Support the preparation and delivery of ICT risk reports to senior management. **Your profile** * University degree in Computer Science, Technology Risk, Cyber Security, or related field. * 5+ years of experience in technology governance, risk, and compliance. * Strong understanding of technology and security frameworks,  risk management principles, and comfortable working cross functionally. * Experience and analytical skills understanding, structuring, and explaining complex topics; end-to-end thinking required. * Can turn incomplete, unstructured, or ambiguous data points into structured outcomes and pragmatic action plans. * Experience working with technology regulations, international standards, or best practices. * Stakeholders’ management skills and capacity to manage priorities simultaneously. * High self-responsibility & ownership; result orientation and customer focus. * Proficiency in written and spoken English (must), as well as in German (nice to have).